what is the best recommended practice for Phones certificate from TLS1.2 and GDPR point of view, should we continue with Factory installed/default certificate from Polycom/AudioCodes/Yealink or replace same with CA-Signed certificate,

We are looking for Auto provisioning method via HTTPS

Thanks!