Unauthorized System Use

You can minimize the risk of unauthorized access to your system by implementing guidelines for your voice mail password and system administrator password. These guidelines should include changing the default administrator password, establishing administrator password standards, and administering password aging.

 

Note: The trusted server has direct access to Intuity AUDIX system and its functionality. See Trusted Server Security for security information specific to the trusted server.

Security and Administrative Passwords

Your Intuity AUDIX system comes equipped with administrative password features and options that you control to assist you in securing your system. These include:

• Changing the default administrator password
• Administrator password standards
• Administrator password aging

Changing the Default Administrator Password

When you first get your system, both the system administrator (sa) login and voice mail administrator (vm) logins come with default passwords. You are required to change these passwords immediately. See Administration Passwords for additional information pertaining to administering your password.

Administrator Password Standards

Intuity AUDIX administrator passwords must conform to certain minimum standards. These standards require that all passwords must be from six to 11 alphanumeric characters. Of those six to 11 characters, at least one must be numeric and two must be alphabetical.

 

Note: The system does not allow the password to be:

• A sequential alpha or numeric string, for example, 123456
• A repetitive string, such as bbbbbb
• The same number as the subscriber's extension, for example, extension 34555 and password 34555

Additionally, the following are minimum standards for ensuring password security:

• Do not put the password on a programmable function key.
• Never use obvious or trivial passwords, such as a telephone extension, room number, employee identification number, social security number, or easily guessed numeric or letter combinations (for example, denver��or audix).
• Do not post, share, print, or write down passwords.
• Change the password at least once per month. You can administer your system to age the password and notify you when a new password is required. See Administration Passwords for additional information pertaining to administering your password.

Administering Password Aging

You can administer several parameters of the password aging feature to enhance the level of security the system maintains. Password aging ensures that administration passwords are changed at reasonable intervals.

Three items used to define the parameters associated with password aging are:

• Password expiration
• Minimum age before changes
• Expiration warning

http://www.avaya.com Avaya UCS Information Development