2N OS version 3.0.2 for 2N Intercoms includes the following changes

Important update notice

• If you are updating from version 3.0.0, the new web interface cannot download firmware from the update server. Update the device using the old web interface or manually upload a newer firmware file.

Essential Corrections

• Fixed an issue that prevented downloading a new firmware from the update server via the new web interface. As a workaround when updating from version 3.0.0, use the old web interface or manually upload a newer firmware file to the device.
• Important bug fixes.

2N OS version 3.0.0 for 2N Intercoms includes the following changes

Precautions to be taken during update to FW version 3.0.x

• For security reasons, network settings can no longer be modified using 2N Network Scanner.
• All 2N OS devices (except those on the original platform: IP Vario, IP Force, IP Safety, IP Solo, IP/LTE Verso, IP Base, IP Uni, IP Audio Kit, IP Video Kit, Access Unit, SIP Speaker) can no longer be downgraded below version 2.47.0 after updating.
• Devices no longer accept certificates signed with 1024-bit RSA keys. These certificates are removed during the update and must be replaced with certificates using at least 2048-bit RSA or ECC keys. Services relying on weaker certificates will stop functioning, and a warning will appear next to the certificate selection parameter in the web interface.
• In EAP-TLS mode, 802.1x no longer supports RADIUS certificates containing the `id-kp-clientAuth` Extended Key Usage. If such certificates are used, they will be rejected after the update, resulting in the device being unable to authenticate and connect to the network.

Introducing the MVP of our new graphical interface

• We are excited to deliver the first Minimum Viable Product of our redesigned graphical interface. This initial release brings several impactful improvements that make everyday work smoother and more intuitive. Among the most notable additions are guided wizards, an enhanced search experience, and other usability upgrades aimed at significantly improving overall user interaction.
• Because this is an MVP, some features are still in development. We will continue to refine, expand, and optimize the interface over the coming updates to ensure it reaches its full potential as quickly as possible.
• If you’re interested in learning how you can support the ongoing development of the new interface and share your feedback with us, please visit the following link: https://www.2n.com/-/media/Files/Web/downloads/Introducing-the-New-2N-Web-Interface

New Functions and Improvements

• Reception of `In-Band (Audio)` DTMF is now disabled by default to improve resilience against malicious attacks.
• STUN support has been added and can be configured under `Calling > SIP # > Configuration`.
• Added support for the Japanese language in the display UI of Answering Units and IP Style.
• Support for 2N Electronic Locks is now included as part of the standard firmware release.

Essential Corrections

• Improved compatibility of outgoing H.264 and H.265 video streams.
• Private keys are no longer exposed via `GET /api/mobilekey/config`.
• Updated several internal libraries.
• Web configuration pages for Automation features now load correctly even when the device is offline (without an active internet connection).
• Eliminated occasional audio distortions on IP Uni and IP Audio Kit devices.
• Fixed an intermittent issue where audio inputs could become swapped on IP Uni and IP Audio Kit devices.
• Devices no longer crash when a user with a limited validity period presents their card, provided the associated RFID reader extension module has `Door` set to `Not used`.
• Cached DNS entries for SIP registrars now expire immediately and correctly when the registrar IP address changes, preventing registration failures.
• Fixed an issue where devices could lose and reacquire their IP address via DHCP twice after a factory reset and subsequent reboots.
• Resolved a device crash that could occur when sending emails using specific SMTP server configurations.
• The `snmpget` function now works correctly on devices using SNMPv3.
• Devices now correctly process `Too Brief` SIP responses during registration and immediately apply the updated expiry period.
• Fixed device crashes caused by specific malformed or non-standard ONVIF requests.
• Corrected an issue where video resolution could be incorrectly limited when selecting lower bitrate settings for the H.265 codec.
• Added a limited-range mode to the WaveKey opening algorithm to prevent unintended door openings from excessive distance.
• PEAP MSCHAPv2 authentication is now fully functional and reliable across all supported models.
• Eliminated a condition that could cause SIP registration to become permanently stuck in the unregistered state.
• Other corrections and fixes.