P a g e
|
4
GRP26XX Security Manual
WEB UI/SSH ACCESS
Web UI Access
The GRP embedded web server responds to HTTP/HTTPS GET/POST requests. Embedded HTML pages
allow users to configure the device through a web browser such as Microsoft IE, Mozilla Firefox, Google
Chrome and etc. With this, administrators can access and configure all available GRP information and
settings. It is critical to understand the security risks involved when placing the IP Phones on public networks
and it’s recommended not to do so.
Web UI Access Protocols
HTTP and HTTPS are supported to access the GRP’s web UI and can be configured under
web UI
→
Maintenance
→
Security settings
→
Security
.
To secure transactions and prevent unauthorized access, it is highly recommended to:
1.
Use HTTPS instead of HTTP.
2.
Avoid using well known port numbers such as 80 and 443.
Figure 1 : Web UI Access Settings
3.
The GRP allow access via SSH for advanced troubleshooting purpose. This is usually not needed
unless the administrator or Grandstream support needs it for troubleshooting purpose. SSH access
on the device is enabled by default with port 22 used. It’s recommended to disable it for daily normal
usage. If SSH access needs to be enabled, changing the port to a different port other than the well-
known port 22 is a good practice.
