All IP Office administrative and maintenance service interfaces are controlled by the security database for availability and security level. These services include:
Service |
Usage |
Configuration |
IP Office Manager and Server Edition Manager configuration access. |
Security Administration |
IP Office Manager and Server Edition Manager security settings (database) access |
System Status Application Interface |
System Status Application (SSA) access |
Enhanced TSPI |
Avaya one-X® Portal for IP Office CTI access |
HTTP |
Phone and IP Office Manager file access, Voicemail Pro, IP Office Line, System Monitor (secure) |
Web Services |
IP Office Web Manager and SMGR |
External |
Services external to the IP Office application. |
Each service has a configurable Service Security Level:
Service Security Level |
Usage |
Disabled |
The service and corresponding TCP ports are inactive |
Unsecure Only |
This option allows only unsecured access to the service. The service's secure TCP port, if any, is disabled. This or Disabled are the only options supported for the Enhanced TSPI service |
Unsecure + Secure |
This option allows both unsecured and secure (Low) access. |
Secure, Low |
This option allows secure access to that service using TLS, and demands weaker (for example 3DES) encryption and authentication or higher. The service's unsecured TCP port is disabled. |
Secure, Medium |
This option allows secure access to that service using TLS, and demands moderate (for example AES-128) encryption and authentication or higher. The service's unsecured TCP port is disabled. |
Secure, High |
This option allows secure access to that service using TLS and demands stronger (for example AES-256) encryption and authentication, or higher. In addition, a certificate is required from the client (for Mutual Authentication). If no certificate is received from the client, the connection is rejected. The service's unsecured TCP port is disabled. |
Other service interfaces are controlled for activity.
