Configuring Security for Unified Messaging Users
Applies to: Exchange Server 2010 SP3, Exchange Server 2010 SP2
Topic Last Modified: 2011-04-28
In Microsoft Exchange Server 2010 Unified Messaging (UM), PIN policies are defined and configured on a UM mailbox policy. Multiple UM mailbox policies can be created, depending on your requirements. When you enable a user for Unified Messaging, you associate or link the user to an existing UM mailbox policy. The UM PIN policies that are configured on the UM mailbox policy should be based on the security requirements of your organization.
A PIN is a numeric string used in certain systems, including Unified Messaging systems, so a user can be authenticated and gain access. A PIN is a pass code users enter on the telephone to access their Exchange mailbox. The strength of the PIN depends on its length, how well it's protected, and how difficult it is to guess.
After you configure PIN settings for a UM-enabled user, you configure and manage PIN settings on the UM-enabled user's Exchange 2010 mailbox and on the UM mailbox policy associated with the UM-enabled user.
When subscribers or a UM-enabled users use a telephone to connect to an Exchange 2010 Unified Messaging server, they use Outlook Voice Access to move through the Unified Messaging menu system. However, before users can access the Unified Messaging system, the system prompts them to input their PIN. As the administrator, you can configure PIN settings and requirements and perform PIN management tasks.
UM mailbox policies can be configured to increase the level of security for UM-enabled users by requiring users to comply with the predefined PIN policies for your organization.
When you modify a UM mailbox policy, you can change such settings as PIN policies, message text settings, and dialing restrictions for a single UM-enabled recipient or for multiple UM-enabled recipients. UM mailbox policies can be configured to increase the level of security for UM-enabled users.
You can increase the level of security for your network by correctly implementing and configuring the following PIN settings on a UM mailbox policy:
The minimum number of digits required for a PIN
The time, in days, a PIN is accepted by the system
The number of times attempts to log on can fail before the user's PIN will be reset
The maximum number of logon attempts before the user is locked out of their mailbox
Whether to allow users to use common patterns in their PIN
The number of past PIN entries the system should remember