System Administration Guide for Cisco Unity Connection Release 10.x
Specifying Password, PIN, Sign-In, and Lockout Policies in Cisco Unity Connection 10.x
Downloads: This chapterpdf (PDF - 157.0KB) The complete bookPDF (PDF - 9.16MB) | Feedback

Table of Contents

Specifying Password, PIN, Sign-In, and Lockout Policies in 10.x

Specifying Password, PIN, Sign-In, and Lockout Policies by Using Authentication Rules

Creating and Modifying Authentication Rules, and Assigning Rules to Users

Specifying Password, PIN, Sign-In, and Lockout Policies in Cisco Unity Connection 10.x

In Cisco Unity Connection10.x, you use authentication rules to determine the password, PIN, and account lockout policies for phone and web-tool access, and to specify the sign-in policy for web-tool access for all users who access Cisco Unity Connection voice messages.

See the following sections:

Specifying Password, PIN, Sign-In, and Lockout Policies by Using Authentication Rules

In Cisco Unity Connection, authentication rules govern user passwords, PINs, and account lockouts for all user accounts. You use authentication rules to secure how users access Unity Connection by phone, and how users access Cisco Unity Connection Administration and the Cisco Personal Communications Assistant (PCA).

For example, an authentication rule determines:

  • The number of failed sign-in attempts that are allowed before an account is locked
  • The number of minutes an account remains locked before it is reset
  • Whether a locked account must be unlocked manually by an administrator
  • The minimum length allowed for passwords and PINs
  • The number of days before a password or PIN expires
  • The number of days during which the expiry warning prompt (after which your credentials will expire) will be played.

Note The Administration can enable or disable the Cisco Unity Connection telephone user interface (touchtone conversation) PIN using the Command Line Interface (CLI). For more information on the CLI commands, see the Utils Command section in the Command Line Interface Reference Guide for Cisco Unified Communications Solutions at http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/cli_ref/10_0_1/CUCM_BK_CBEED39F_00_cucm-cli-reference-guide-100.html.


Creating and Modifying Authentication Rules, and Assigning Rules to Users

Authentication rules are specified on the System Settings > Authentication Rules page in Cisco Unity Connection Administration. Unity Connection includes the following predefined authentication rules:

 

Recommended Voicemail Authentication Rule

By default, Unity Connection applies this rule to the voicemail PIN on the Password Settings page of each user account and user template for which you set up user access to Unity Connection by phone.

Recommended Web Application Authentication Rule

By default, Unity Connection applies this rule to the Web Application password on the Password Settings page of each user account and user template for which you set up user access to Cisco Unity Connection Administration, or to the Cisco Personal Communications Assistant.

You can change these defaults, and can create an unlimited number of additional authentication rules.

For user accounts and templates, you specify the authentication rule that governs user access to Unity Connection. For information on specifying an authentication rule for a user account or template, see the “Passwords and PINs in Cisco Unity Connection 10.x” section in the “ Setting Up Features and Functionality That Are Controlled by User Account Settings in Cisco Unity Connection 10.x ” chapter of the User Moves, Adds, and Changes Guide for Cisco Unity Connection Release 10.x , at http://www.cisco.com/en/US/docs/voice_ip_comm/connection/10x/user_mac/guide/10xcucmacx.html .