In order to maintain Security, the following system procedures have been enhanced:
Logging in
Leaving the system unattended
Maintaining secure connections between IP endpoints.
If a user fails to log in after three consecutive attempts, the event is recorded in the maintenance log and the user is locked out of the system.
When the 3300 ICP first boots up, it automatically detects its IP Address and the name programmed into the RTC card. The name is added to the certificate the web server will use for SSL communications. There is also the name "Mitel mn3300 web server".
In the case of the MXe Server, it is the System IP address and the name is programmed into the APC-MXe.
If the web server is accessed by an URL not matching a DNS or local host filename in the certificate, a warning that the name in the certificate does not match the name of the site is displayed.
Click Yes in the Security Alert window. Once the 3300 ICP web server detects access by a new name, it regenerates the certificate to contain the new name for all subsequent connections. The names are stored in the webs/web/my_names.txt disk file and preserved across system reboots.
To maintain system security while the system is unattended, leave the Attendant Console in Attendant Absent mode.
In an IP-enabled network, secure connections between IP endpoints is required and can be achieved in the following ways:
Media Signaling Security ensures all messages transmitted over IP are encrypted. For more information about Secure Sockets Layer (SSL) security, see Media Signaling Security.
Voice Streaming Security ensures all voice packets transmitted over IP are encrypted. For more information about Secure RTP (SRTP), see Voice Streaming Security.
To Disable/Enable Voice Encryption:
From the System Administration tool, access the System Options form. The Voice Encryption Enabled field is set to "Yes" by default.
Click Change.
To disable voice encryption, select "No".
For more information about voice encryption, see System Options.
