Vantage
™
to encrypt calls between two or more endpoints, to prevent anyone from eavesdropping.
The Avaya Breeze
™
CSDK applications also support secure signaling through SIP-TLS.
Some of the other security features are:
• TLS support for all services, such as HTTPS file downloads and SCEP over HTTPS.
• EAP-TLS and EAP-MD5 authentication methods for Ethernet.
• Support for the following Wi-Fi security protocols: WEP, WPA, WPA2 PSK, and 802.1x,
including EAP-PEAP, EAP-TLS, EAP-TTLS, and EAP-PWD with phase two authentication.
• Identity certificate and trusted certificate support. Avaya Vantage
™
supports up to 100 trusted
certificates in either PEM or DER format.
• Android built-in trusted certificates that can be used by all Android applications installed on
Avaya Vantage
™
. According to the value set for the ENABLE_PUBLIC_CA_CERTS parameter,
Avaya Device Enrollment Service, HTTP or HTTPS file download, PPM, SCEP over HTTPS,
and Avaya Aura
®
Device Services use these trusted certificates.
• No built-in Avaya certificates except Avaya Product Root CA. This certificate is only used for
software signature validation.
• Application download control using a configurable XML file. No installation of applications from
unknown sources.
• Support for antivirus and antimalware applications.
• Android security features, such as disk encryption, remote wipe, and SELinux running in
enforcing mode.
Password security policies
In the SIP login password, you can use:
• Numbers: 0 – 9
• Capital letters: A – Z
• Lowercase letters: a – z
• Special characters: ~!@#$%^&*_-+=`|\(){}[]:;”’<>,.?/
In the Avaya Aura
®
environment, you can configure password policies for Avaya Vantage
™
using
System Manager.
With IP Office Release 11.0, the SIP user password is required when creating a new user. For
more information, see Avaya IP Office
™
Platform SIP Telephone Installation Notes.
If you use an Exchange account on Avaya Vantage
™
, then security policies configured for Avaya
Vantage
™
must comply with the security policies configured for the Microsoft Exchange Server. If
the device password does not comply with the Microsoft Exchange Server policies, the user might
not be able to configure or use the Exchange account. Microsoft Exchange Server policies must
allow the usage of numeric SIP passwords when using the SIP login method. Contact your
Security configuration
May 2018 Installing and Administering Avaya Vantage
™
38
Comments on this document? infodev@avaya.com
To Next Page
Loading...
