Ok, you already have a list of ports that need to be opened.Now, assuming your phones are on the internal side of the ASA, they do not represent a threat and are somehow trusted phones. There should not be any port restriction, we trust the phones do...
Two things we can try.Try to "rediscover" the sensor.Basically go to the device list, delete it and add it back.If that doesn't work, try to reload the server that has the IME software.
Can you attach the configuration of the unit to the thread?When he wants to connect during business hours but can't, is he even able to get the login prompt?I'm thinking about time-ranges and management over VPN. Need config to confirm.You still have...