I’m having an issue that I’ve been fighting for a few days with no success. A customer reported that their phones starting showing “HTTP(S) ID/PW CONFIG” windows, with a Username and Password prompt. Dismissing the window let the phone work fine otherwise, but the message would come back after a little while.
The FreePBX install is a VM at Vultr running 18.104.22.168. They use option 66 to register to the PBX using https, although I’ve since noticed that the templates were switching them to http. The phones had all been working fine for four months since original install and there were no recent phone nor network changes. Over the weekend, the PBX ran automated module updates: api, backup, cel, certman, core, digiumaddoninstaller, endpoint, filestore, findmefollow, firewall, framework, pm2, restapps, sangomaconnect, sipstation, sysadmin, vmblast, voicemail, webrtc. That’s when the problem started.
The phones are Grandstream GXP-2170s. The phone was originally running 22.214.171.124; during testing, I upgraded it to the latest, 126.96.36.199, but that didn’t help.
I have factory reset the phone many time; the message always comes back. I’ve tried switching between all-https and all-http. (SSL is via Let’s Encrypt and is valid until October, so that shouldn’t be a problem; it’s fine on the web interface.) I’ve taken a new phone out of the box and tried to connect it and it also got the prompt.
I tried downgrading endpoint and sysadmin to the pre-update versions, but that didn’t help. (For the record, during the weekend update, endpoint went from 188.8.131.52 to 15.0.41 and sysadmin went from 184.108.40.206 to 220.127.116.11.) I’ve tried disabling all unused commercial modules (such as phone apps) in case they were triggering the prompt. We do NOT use Sysadmin Pro; I know it’s possible to change provisioning passwords in there, but we haven’t done anything like that. The PBX is a pretty simple configuration; nothing exotic.
Attempting to sign in at the phone prompt fails every time and promptly puts our IP address in the apache-tcpwrapper jail.
The Apache logs show it trying to connect:
[Thu Aug 26 13:20:41.591114 2021] [auth_basic:error] [pid 21045] [client (our IP address):37137] AH01618: user 102 not found: /cfgc074ad2ab060.xml
…with other XML files listed afterwords. So I’m really not sure what it’s trying to log into. It does register fine using 102 as an extension, it’s only this additional window that’s the problem.
My suspicion is that one of the updates added some sort of authentication request somewhere and downgrading left that in its place, but I can’t find anything. The only changes in the basefile are for specifying the location for weather.
Any suggestions would be greatly appreciated! Thank you!