System Security; Unauthorized Access; Unistim Security With Dtls; Ip Security - Avaya 1000 Installation And Commissioning Manual

Branch office

Hide thumbs Also See for 1000:

Reference (700 pages)

Manual (570 pages)

Configuration manual (350 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

Table of Contents

Planning and management

System security

CS1000E and CS1000M (Large System) system security is explained in detail in Avaya Security

Management Fundamentals, NN43001-604. This is required reading for any Branch Office

administrator. Refer to Avaya System Management Reference, NN43001-600 for additional

information.

Avaya recommends that the Station Control Password (SCPW) be longer than four characters. This

recommendation is not enforced by the software. The SCPW does not have to be the same in the

main office and the Branch Office, but the user can set them to be the same for convenience.

Unauthorized access

When using Branch User Config during the installation phase, a branch password and a main office

password are required. The branch password is the IP Phone Installer's Password or the Temporary

IP Phone Installer's Password. If the required password is not configured, an error message (or

otherwise failure to login) results. Three failed attempts lock that particular user ID from logging in

for one hour. The lock is recorded in the TPS system log, and is printed to the Teletype Terminal

(TTY). The system administrator can clear the lockout. Also, rebooting or reregistering the telephone

to the TPS node can also clear the lock.

Three failed attempts to enter the main office password also locks the user out (this time at the main

office Call Server). The main office Call Server lock can be removed only by an administrator using

a LD 32 command to disable and re-enable that Terminal Number (TN) at the main office.

For additional information, see Avaya Communication Server 1000E: Planning and Engineering

(NN43041-220).

UNIStim security with DTLS

The LTPS uses the UNIStim security with DTLS feature to detect if a phone uses Secure UNIStim.

After the you install the Communication Server 1000 software on the system (either during a fresh

install or upgrade), DTLS signaling security is disabled by default (DTLS policy is set to OFF). You

must configure at least Basic Security Level to enable DTLS. For more information on UNIStim

security with DTLS, see Avaya Security Management Fundamentals, NN43001-604.

IP Security

IP security (IPsec) for Communication Server 1000 networks is centrally managed from the IPsec

for Intra System Signaling Security (ISSS) management interface of the Primary UCM server. ISSS

Branch Office Installation and Commissioning

Signaling Server CLI commands

Comments? infodev@avaya.com

on page 200.

June 2014

Table of Contents

System Security; Unauthorized Access; Unistim Security With Dtls; Ip Security - Avaya 1000 Installation And Commissioning Manual

System security

Unauthorized access

UNIStim security with DTLS

IP Security

Related Manuals for Avaya 1000

Related Content for Avaya 1000

Table of Contents