Unify V3R3 Specifications download pdf (Page 14)

Phone Hardening Measures

A31003-D3000-P100-01-76A9, 10-2013

14 OpenStage and Desk Phone IP SIP V3, Security Checklist, Planning Guide

Secure Administration Access to the Phone

4.2.2 Harden Local phone User Access

In addition to setting an individual secure password for each phone the following

can be done to harden user access to the phone.

• Where phones should only be used by specific users – for example for

phones in secure areas where visitors are not allowed access to use the

phone, or in public areas where public use of the phone is not allowed then

the Phone Lock feature should be turned on. A valid User password is needed

for this feature.

Emergency calls are possible while the phone is locked, but Users will need

to unlock the phone to make regular calls and gain access to user data on the

phone – for example call log or directory;

• To prevent users making changes to configuration items the User access can

be blocked at the following levels:

– Particular configuration items can be locked down by configuration of the

data constraints in the DLS

– User access to the User menus can be disabled. The user can still set

forwarding and configure the programmable FPK keys, but access to

individual user settings are disabled

INFO: If the local user access is disabled then the phonelock

feature will not work.

• If the customer’s security policy is to prevent access to information about the

phone setup such as the IP address being used then access to the diagnostic

data should be disabled

Table: Harden Local phone User Access

CL-Secure User Access

Measures • Setup the password policy for User password

• Set an individual User password for each phone

• Set Phone Lock ON

• Lock Down particular data items by configuration at DLS

• Disable User Access to configuration menus

• Disable access to diagnostic data if needed to comply

with customer’s security policy

References See Chapter Password and PIN Policiesfor setting Password

policy.

See Phone Administration Manual chapter on Security ->

Password Policy

Can be done

Needed Access Rights Admin Access

Executed

Setup Generic User Pass-

word Policy

Yes No:

1 2 ... 9 10 11 12 13 14 15 16 17 18 19 ... 43 44

Comments to this Manuals

No comments

Unify V3R3 Specifications Page 14

Comments to this Manuals

Related products and manuals for Telephones Unify V3R3