Chapter 23 - Ultra Secure Mode
Polycom, Inc. 23-21
Disabling Inactive Users
Users can be automatically disabled by the system when they do not log into the
Collaboration Server application for a predefined period. When the Collaboration Server is
configured to Ultra Secure Mode (the ULTRA_SECURE_MODE System Flag is set to YES),
this option is enforced.
• To enable this option, the DISABLE_INACTIVE_USER System Flag to a value between
1 to 90. This value determines the number of consecutive days a user can be inactive
before being disabled.
When flag value is set to 0 (default in standard security environment), this option is
disabled.
The flag value is automatically set to 30 days when the ULTRA_SECURE_MODE
System Flag is set to YES.
• The user is marked as disabled but is not deleted from the system administrator/
operator database.
• The user remains disabled until re-enabled by an administrator.
• If a disabled user attempts to Login, an error message, Account is disabled, is displayed.
• The last remaining administrator cannot be disabled.
For more information see "Disabling Inactive Users” on page 23-21.
Managing the User Login Process
Implementing Strong Passwords
Strong Passwords can be implemented for logging into the Collaboration Server management
applications. They can be implemented when the system is in standard security mode or
when in Ultra Secure Mode.
The FORCE_STRONG_PASSWORD_POLICY System Flag, which enables or disables all
password related flags cannot be set to NO and all Strong Passwords rules are automatically
enabled and cannot be disabled when the ULTRA_SECURE_MODE System Flag is set to
YES.
If an administrator modifies any of the Strong Passwords flag settings, all users are forced to
perform the password change procedure, ensuring that all user passwords conform to the
modified Strong Passwords settings.
Administrators can change passwords for users and other administrators. When changing
passwords for him/herself, other administrators or other users, the administrator is
required to enter his/her own administrator’s password.
Strong Passwords rules are enforced according to the settings of the various Strong Passwords
flags as described in Table 23-1, “ULTRA_SECURE_MODE Flag Value – Effect on System
Flags,” on page 23-3. Default settings of these flag change according to the system security
mode.
Password Character Composition
• When the FORCE_STRONG_PASSWORD_POLICY System Flag is set to YES:
— A Strong Password must contain at least one of all of the following character types:
• Upper case letters
•Lower case letters
•Numbers