@EddieJennings said in Users with multiple phones and phones with multiple users:

@JaredBusch said in Users with multiple phones and phones with multiple users:

@scottalanmiller said in Users with multiple phones and phones with multiple users:

@Dashrender said in Users with multiple phones and phones with multiple users:

How do you secure this for truly mobile use (crazy guy is allowed to demand the use of a physical phone from anywhere)?

Ideally, crazy long passwords, and better with TLS on the SIP channel. You can go further with port knocking and similar. VPN is an option. But good passwords go a long way, and adding TLS goes really far.

You don't hotdesk with secure creds though because you cannot trust users type all of that in. That is why it is a bad idea for this scenario.

The best option is simply to use secure credentials like always and just allow the extension to authenticate from more than one device.

This requires training the users to push their ext button before dialing out when using the shared phone in the office.

This will likely be the way I'll handle the folks who come into the office once per week. This project is the perfect opportunity to introduce new behavior.

@Dashrender Right now, there is no security outside of extension number and passcode. Out-of-office users, simply have their phones configured to talk to our on-premises server and they login using their extension's credentials. Everything's in the clear.

Hence your toll fraud. I can log on to any of those extensions from anywhere.