In addition to traditional username/password and IP-based authentication, CommPeak also supports JSON Web Token (JWT AUTHENTICATION) for your SIP accounts.

📘

NOTE

JWT is a widely adopted open standard that simplifies secure data exchange. Since each token is digitally signed, the data can be verified and trusted, ensuring security and integrity throughout communication. This modern authentication method ensures a more secure and scalable way to manage access.

Configuring JWT Authentication

To configure JWT authentication, follow these steps:

1. Expand VoIP Services in the left pane.
2. Click the SIP Accounts tab.
3. Click the edit button next to the SIP account for which you want to enable JWT authentication.

4. On the Edit SIP Account page, scroll down to the Authentication section and toggle Allow JWT Authentication.

❗️

IMPORTANT

JWT authentication is only available for password-based SIP Accounts.

IP Access Control List (ACL) settings will still be enforced even when JWT is enabled.

5. After enabling the JWT Authentication option, define a JWT signature secret.

You have two choices:

• Let the system automatically generate a secure secret by using the Generate button.
• Manually enter your own secret (32 characters long, only letters and numbers allowed).

👍

TIP

Use the Copy button to copy the secret to your clipboard.

6. After copying and saving your JWT signature secret, click the Save Changes button to apply the new settings.

Using SIP Account with JWT Authentication

Once JWT Authentication is enabled, you will see a new icon next to your SIP account status on the SIP Accounts page, making it easy to identify accounts with JWT.

Now, you can instantly launch the built-in CommPeak Softphone directly from this page.

Please check this step-by-step guide for precise, actionable instructions on implementing the WebRTC Softphone directly on your website.