114 Chapter 7 Security recommendations
Preventing administrators from being locked out of CallPilot
Manager
Administrators can be locked out of CallPilot Manager if they (or someone
else) tries to log on with the wrong password too many times. You can
minimize the risk associated with this type of denial of service attack.
To avoid manually resetting passwords whenever this happens, you
can configure CallPilot Manager to automatically re-enable disabled
administrator passwords after the configured length of time.
Mailbox password default values shipped with CallPilot
Setting
Password prefix
Minimum length of password
Maximum days permitted between changes
Number of days before password expiry that the
mailbox owner receives a warning
Number of different passwords that mailbox
owners must create before recycling an old
password
Getting there: Messaging → Security Administration → Passwords
section
Controlling access to mailboxes
Define mailbox logon requirements for all system users. Enable and
configure security options that control external logons and limit the number
of unsuccessful logon attempts.
Mailbox access control default values shipped with CallPilot
Access control
Number of unsuccessful logon attempts
that can be made on a mailbox before
it is disabled.
Copyright © 2007, Nortel Networks
.
Nortel CallPilot
Administrator Guide
NN44200-601 01.11 Standard
5.0 9 November 2007
Shipped
default value
12
6 characters
90 days
5 days
5 passwords
Shipped default value
9