User's Manual

ManualsBrandsAvaya ManualsGatewayAvaya B5800 Branch Gateway Manager

Avaya Branch Gateway Manager 10.0 Page 77

15-601011 Issue 29r (Friday, November 02, 2012)B5800 Branch Gateway

Security Mode: Editing Security Settings

· High

The password characters used must include characters from at least 3 of the 'code point sets' listed above. For

example a mix of lower case, upper case and numbers. In addition, there should not be any adjacent repeated

characters of any type.

· Previous Password Limit (Entries): Default = 0. Range = 0 (Off) to 10 records.

The number of previous password to check for duplicates against when changing the password. When set to 0, no

checking of previous passwords takes place. This setting is active for attempted password changes on both Security

Manager and the system.

· Service User Details

These settings control service user names and password/account policies.

· Minimum Name Length: Default = 6, Range 1 to 31 characters.

This field sets the minimum name length for service user names.

· Minimum Password Length: Default = 6, Range 1 to 31 characters.

This field sets the minimum password length for service user passwords.

· Password Reject Limit: Default = 3, Range 0 to 255 failures.

Sets how many times an invalid name or password is allowed within a 10 minute period before the Password Reject

Action is performed. Selecting 0 indicates never perform the Password Reject Action.

· Password Reject Action: Default = Log to Audit Trail

The action performed when a user reaches the Password Reject Limit. Current options are:

· No Action

· Log to Audit Trail

Log to Audit Trail creates a record indicating the service user account name and time of last failure.

· Log and Disable Account:.

Log and Disable Account creates an audit trail record and additionally permanently disables the service user

account. This account may only be enabled using the Security Manager Service User settings.

· Log and Temporary Disable:

Log and Temporary Disable creates an audit trail record and additionally temporarily disables the service user

account for 10 minutes. This account may additionally be enabled using the Security Manager Service User

settings.

· Minimum Password Complexity: Default = Low.

The password complexity requirements for all service users. This setting is active for attempted password changes

on both Security Manager and the system.

· Low

Any password characters may be used without constraint.

· Medium

The password characters used must cover two 'code point sets'. For example lower case and upper case. In

addition, Medium and High do not allow more than 2 repeated characters of any type.

· High

The password characters used must cover three 'code point sets'. For example lower case plus upper case and

numbers.

· Password Change Period: Default = 0 (Off), Range 0 to 999 days.

Sets how many days a newly changed password is valid. Selecting 0 indicates any password is valid forever. This

setting is active for password changes through this form or prompted by Branch Gateway Manager. Note that the

user must be a member of a Rights Group that has the Security Administration option Write own service

user password enabled. If this timer expires, the service user account is locked. The account may only be re-

enabled using the Service User Settings . To prompt the user a number of days before the account is locked set a

Expiry Reminder Time (see below).

· Whenever this setting is changed and the OK button is clicked, the Security Manager recalculates all existing

service user password timers.

· Account Idle Time: Default = 0 (Off), Range 0 to 999 days.

Sets how many days a service user account may be inactive before it becomes disabled. Selecting 0 indicates an

account may be idle forever. If this timer expires, the service user account is permanently disabled. The account

may only be re-enabled using the Service User Settings . The idle timer is reset whenever a service user

successfully logs in.

· Whenever this setting is changed and the OK button is clicked, the Security Manager recalculates all existing

service user idle timers.

· Expiry Reminder Time: Default = 28, Range 0 (Off) to 999 days.

Sets the period before password or account expiry during which a reminder indication if the service user logs in.

Selecting 0 prevents any reminders. Reminders are sent, for password expiry due to the Password Change Period

(above) or due to the Account Expiry date (see Service User setting) – whichever is the sooner. Currently Branch

Gateway Manager displays reminders but System Status does not.