News:

On Tuesday September 6th the forum will be down for maintenance from 9:30 PM to 11:59 PM PDT

Main Menu

Does a GV Auth2.0 cert survive ITSP and/or SPx reprogramming?

Started by restamp, February 23, 2017, 02:20:29 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

restamp

February 23, 2017, 02:20:29 PM Last Edit: February 23, 2017, 02:22:24 PM by restamp
Here is a question I've had for some time.  It's testable, but I haven't bothered and hope perhaps someone else who knows can address it:

How is a GV cert stored in the OBi?  Is it associated with an ITSP profile, or an SPx, or is it just saved in a special area of static memory for certs?  This goes to the question of what happens if, after establishing a GV line, you disconnect from OBiTalk and manually change that profile to something else -- say a SIP trunk.  If you then retraced your steps and reconverted it back to the way it was initially would the GV line still work, or would you need to go to OBiTalk and reinstall the cert?

And if the cert sticks around, is it possible to move the GV line from one SP trunk to another simply by reoptioning them without a need to reinstall the cert?  (This would imply, of course, that a cert in the OBi is not associated with any one trunk.)

Finally, if the latter is true, how does one insure a cert is purged from the OBi once it is installed?  I'm fairly confident that a hard reset would do this, and one could invalidate the cert by changing one's gmail password, but short of these actions how does one ensure someone can't make use of a previously stored cert at a later point in time?

Inquiring minds...

SteveInWA

#1
February 23, 2017, 02:40:13 PM Last Edit: February 23, 2017, 02:41:55 PM by SteveInWA
Hi:  the OAUTH 2.0 key is somehow associated with the SPx configuration, stored on the device.  No idea what part of the flash memory stores it.  If you delete the SP, the OAUTH key is deleted.  No, you can't move it or otherwise reprogram it.  It's a simple matter to just set it up again; it just takes about 3 minutes.

As to being security-conscious, the definitive way to invalidate the authorization key is to go to your Google account, and delete the authorization to the OBiTALK service:

Start here:  https://myaccount.google.com/ and run the "Security checkup".   It will eventually display "account permissions", where you can see and delete OBiTALK's link to "Google Voice", and optionally if you imported your contacts to an OBi IP phone or via OBIEXTRAs, "Google Contacts import".  It's a good idea to periodically run through the entire security checkup on all of your Google accounts.
Print
Go Up Pages1
User actions