FAQ Maxwell 3 / Basic: HTTP Digest

Introduction

To insure that a device is right device that is allowed to download the provisioning file, the access to the (HTTP(S))provisioning server can be protected using HTTP Digest.

A username and password can be used to confirm the identity of a user before sending sensitive information.

Normal HTTP Digest Authentication Scheme

The Maxwell sends the server a request to download the provisioning template.
The WEB-server receives the request and requires an authentication. The WEB-server checks if the authentication information is in the request. Because this is the first request, there is no authentication information available. The WEB-server responds returning an 401 Unauthorized.
The client receives the WEB-server challenge and gathers the required credentials. A new request is send containing the username and hashed secret key.

Username = Maxwell MAC address (12 Digits)
Password = Maxwell MAC-ID (12 Digits)

The MAC-ID can be collected when you register the device to the Gigaset Re-direct server.
When username and password are correct, the provisioning template is downloaded.

First Authentication fails

The client receives the WEB-server challenge and gathers the required credentials. A new request is send containing the username (MAC address) and hashed secret key (MAC-ID).
The WEB-server receives the request and requires an authentication. The WEB-server checks if the authentication information is in the request. The wrong authentication information is available. The WEB-server responds returning an 401 Unauthorized.
The client receives the WEB-server challenge and gathers the required credentials coming from the device configuration. A new request is send containing the username and hashed secret key.

Username = Settings - System - Security - HTTP digest username
Password = Settings - System - Security - HTTP digest password

Second Authentication fails

Page tree

FAQ Maxwell 3 / Basic: HTTP Digest