Technical information
Security Measures
Issue 7 June 2001
4-27
Security Measures
The following procedures explain how to use security tools to create restrictions
that help prevent unauthorized access to your PBX system’s facilities.
Require Passwords
For DEFINITY ECS, DEFINITY G1, G3, and System 75, passwords may be up to
7 alphanumeric characters (11 for G3V3 and later). For System 85 and DEFINITY
G2, the security code may be up to 6 digits.
Change passwords for system logins frequently according to the guidelines listed
below.
For DEFINITY G1 and System 75, routinely change logins for Network
Management Systems (NMS), “cust,” “rcust,” “browse,” and “bcms.”
Disable any unused login. Except for System 75 R1V1, to disable a login,
type
VOID in the Password field. (Note that VOID must be typed in
uppercase.)
NOTE:
“NMS,” browse,” and “bcms” are not available in System 75
R1V1; “NMS” is not available in System 75 R1V2; “bcms” is not
available in System 75.
NOTE:
Do not use VOID to disable logins in System 75 R1V1; it will not
work. In this release, if the password has been set to
VOID, typing
VOID when prompted for the password will result in a successful
login. It is not possible to disable logins for this release. Instead, you
can change all permissions on logins, change the password, select
carefully constructed passwords, change passwords frequently, and
purchase the Remote Port Security Device (RPSD) hardware for
added security.
NOTE:
System 75 R1V2 customers should contact the Avaya Technical
Service Center for “browse” password administration procedures.
— For System 75 R1V3N and the DEFINITY G1.1N and G3V2,
systems are shipped with the customer logins disabled.
!
CAUTION:
Systems upgraded from earlier versions will have the logins
and passwords of its previous version. This applies to “N”
loads and DEFINITY ECS and DEFINITY G3.