|
|
Cisco products are designed to be secure. However, some action is required on your part to ensure that the necessary security precautions are made and implemented. Maximum security is assured by the following factors:
The system allows fixed length and variable length passwords from 4 to 8 digits. The system default is a fixed length of 4 digits. You should change it through Unified Messaging System Administration (UMSA) to variable length of 5 to 8 digits.
The system disconnects a subscriber after a configurable number of failed login attempts in a single session. You can change that number by updating the MaxLoginAttempts attribute in the UM.ini file. The default is 3.
The system locks out a subscriber after the maximum number of consecutive failed login attempts across multiple sessions. You can change this number by updating the Class of Service in UMSA. The default is 6.
You can administer addressing rules on the system. By administering the DialMap.ini file and your PBX appropriately, you can minimize toll fraud.
Subscribers are responsible for their own Passwords/PINs. It is your responsibility to tell them the importance of password security.
Make these recommendations to subscribers:
Administration passwords should not be trivial
Regularly backup system data to ensure a timely recovery, should it be required.
Check logs for "lockout", password problems, etc.
Posted: Mon Sep 25 19:49:27 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.