Local Accounts; External Authentication; Port Lockout; Password Policies - Polycom RealPresence Group Series Release Notes

Release Notes
Polycom RealPresence Group Series, Version 4.1.1.1

Local Accounts

External Authentication

Whitelist

Port Lockout

Session Lists
6

Password Policies

You can configure password policies for Admin, User, Meeting, Remote
Access, and SNMP passwords. These password policies can ensure that
strong passwords are used.

Account Lockout

RealPresence Group systems provide access controls that prevent
unauthorized use of the system. One way someone might try to discover valid
user names and passwords is by exhaustively attempting to log in, varying the
user name and password data in a programmatic way until discovering a
combination that succeeds. Such a method is called a "brute-force" attack.
To mitigate the risk of such an attack, account lockout protects local accounts
from being vulnerable to brute-force attacks.
Version 4.1.1 supports the use of the Active Directory Server (ADS), which
enables you to use the system other than through the built-in local accounts.
When the whitelist is enabled, the Polycom RealPresence Group system web
interface and SNMP ports accept connections only from specified IP
addresses.
You can protect your RealPresence Group systems against unauthorized
attempts to log in through the web interface. Port lockout protects against
brute-force attacks by temporarily locking the login port after a configurable
number of unsuccessful login attempts have been made, regardless of which
account was used. It is supported only on the web interface.
You can use the sessions list to see information about everyone logged in to a
RealPresence Group system including the following:
• Type of connection, for example, Web
• ID associated with the session, typically Admin or User
Polycom, Inc.