OmniPCX Enterprise
INSTALLATION PROCEDURE FOR VERSION
J1.410.34.c – RELEASE 10.0
TC1449 48 Ed. 02 / 22 June 2011
11.1.1 Security activated by default during a installation
As of Release 6.2, the first standard installation, a list of security levels are displayed before any
other configuration is possible.
This list proposed in a menu on the first login on Call Server, makes it possible to sensitize the
Partner Business on the policy of security which he will have chosen for the system.
The absence of security on the system, which remains always possible, will be under the whole
responsibility for the customer.
Description
On the first login after the standard installation of a Call Server, the question Do you want to
activate server security high level (Y/N)? is displayed.
An answer (Y or N) is mandatory to quit the menu.
Answer N
The following menu appears:
Select server security level :
R) Configuration to be restored
0) Level_0 = no security feature activated
1) Level_1 = password/aging
2) Level_2 = password/aging + trusted hosts/TCP wrapper
3) Level_3 = password/aging + trusted hosts/TCP wrapper + SSH
Choice R is used to restore Linux data of the system (and thus to retain its levels of security) if this is a
migration from R5.1, R6.x.
Choice 0 is used to initialize the system with no default level of security as in R6.1.
Choices 1, 2, 3 are used to set the various levels of security already existing in R6.1 and in R7.0
by mixing between them if necessary:
• Choice 1 : Modification of passwords of root, swinst, mtcl and adfexc accounts
and enabling of the aging password function
• Choice 2 : Choice 1 + enabling of the trusted hosts and TCP wrapper
• Choice 3 : Choice 2 + enabling of the SSH service
Answer Y
The level of security 3 is automatically set.
11.1.2 Installation of a secured system for VoIP encryption ("IP Touch Security" service)
For reasons of export control of encryption technology, a patch called patch of security is provided in
addition to the generic version.
This patch of security contains only the secured binaries for IP Touch sets and the binaries of "IP
Touch Security Modules".
To Next Page
Loading...
Need help?
General
