Defaults values for IP Office security settings are loaded on first start-up and on reset. They have a level of security and include enforced password changes for accounts.
It is possible to reset the IP Office security settings via a management interface, IP500 V2 serial port or power-on reset buttons; for this reason it is important to make the IP Office installation physically secure.
The following default security settings are applied to the various IP Office service interfaces.
Interface |
Default Setting |
Default Security? |
Notes |
Configuration |
Secure, Medium |
✓ |
IP Office Manager configuration access |
Security Administration |
Secure, Medium |
✓ |
IP Office Manager security settings access |
System Status Application Interface |
Secure, Medium |
✓ |
SSA access |
Enhanced TSPI |
Secure, Medium |
✕ |
Avaya one-X® Portal for IP Office CTI access |
HTTP |
Unsecure + Secure |
✕ |
Phone and IP Office Manager file access, Voicemail Pro, IP Office Line, System Monitor (secure) |
Web Services |
Secure, Medium |
✓ |
IP Office Manager and SMGR |
TFTP Server |
Active (IP500 V2) Inactive (Linux) |
✕ |
Allows access for IP Office Manager upgrade and UDP whois discovery |
TFTP Directory Read |
Inactive |
n/a |
DECT R4 system directory |
TFTP Voicemail |
Inactive |
n/a |
Used for Voicemail Pro R9.0 and prior |
Program Code |
Active (IP500 V2) Inactive (Linux) |
✕ |
IP Office Manager upgrade access |
Devlink |
Inactive |
n/a |
DevLink and System Monitor UDP/TCP access |
Devlink3 |
Active |
✓ |
DevLink3 access |
TAPI |
Inactive |
n/a |
1st and 3rd party TAPI interfaces only |
HTTP Directory Read |
Active |
✕ |
Avaya one-X® Portal for IP Office directory access, external directory feature |
HTTP Directory Write |
Active |
✕ |
Avaya one-X® Portal for IP Office directory access |
The local security settings for Avaya one-X® Portal for IP Office and Voicemail Pro may be reset using the Linux console CLI and root access.
