Managing The User Login Process - Polycom RealPresence 4000 Administrator's Manual

•
•
•
•
•
For more information see "Disabling Inactive Users" on page 23-20.

Managing the User Login Process

Implementing Strong Passwords
Strong Passwords can be implemented for logging into the RMX management applications.
They can be implemented when the system is in standard security mode or when in Ultra
Secure Mode.
The FORCE_STRONG_PASSWORD_POLICY System Flag, which enables or disables all
password related flags cannot be set to NO and all Strong Passwords rules are automatically
enabled and cannot be disabled when the ULTRA_SECURE_MODE System Flag is set to
YES.
If an administrator modifies any of the Strong Passwords flag settings, all users are forced to
perform the password change procedure, ensuring that all user passwords conform to the
modified Strong Passwords settings.
Administrators can change passwords for users and other administrators. When changing
passwords for him/herself, other administrators or other users, the administrator is
required to enter his/her own administrator's password.
Strong Passwords rules are enforced according to the settings of the various Strong Passwords
flags as described in Table 23-1, "ULTRA_SECURE_MODE Flag Value – Effect on System
Flags," on page 23-3. Default settings of these flag change according to the system security
mode.
Password Character Composition
•
•
Polycom, Inc.
To enable this option, the DISABLE_INACTIVE_USER System Flag to a value between
1 to 90. This value determines the number of consecutive days a user can be inactive
before being disabled.
When flag value is set to 0 (default in standard security environment), this option is
disabled.
The flag value is automatically set to 30 days when the ULTRA_SECURE_MODE
System Flag is set to YES.
The user is marked as disabled but is not deleted from the system administrator/
operator database.
The user remains disabled until re-enabled by an administrator.
If a disabled user attempts to Login, an error message, Account is disabled, is displayed.
The last remaining administrator cannot be disabled.
When the FORCE_STRONG_PASSWORD_POLICY System Flag is set to YES:
— A Strong Password must contain at least one of all of the following character types:
• Upper case letters
• Lower case letters
• Numbers
• Special characters: @ # $ % ^ & * ( ) _ - = + | } { : " \ ] [ ; / ?
> < , . (space) ~
When the FORCE_STRONG_PASSWORD_POLICY and ULTRA_SECURE_MODE
System Flags are set to YES:
— A Strong Password must contain at least two of all of the following character types:
• Upper case letters
Chapter 23-Ultra Secure Mode
23-21