Extension security, Sip/iax password, Strategy of ip access control – Grandstream UCM6100 Security Manual User Manual

UCM6100 Security Manual Page 7 of 23

EXTENSION SECURITY

SIP/IAX PASSWORD

When creating a new SIP/IAX extension, the UCM6100 administrator

is required to configure “SIP/IAX

Password” which will be used for account registration authentication.

I

f “Enable Random Password” (on web GUI->PBX->Internal Options->General) is enabled, “SIP/IAX

Password” is automatically filled with a randomly generated secure password when creating the extension

on the UCM6100.

If “Enable Strong Password” (on web GUI-> PBX->Internal Options->General) is enabled, the password

must be alphanumeric which should contain numeric digit and at least one lower case alphabet or upper

case alphabet, or special character.

It is recommended to use random password and strong password to reduce the chance that the password

being guessed or cracked out.

STRATEGY OF IP ACCESS CONTROL

The UCM6100 administrator could control what IP address(s) is allowed to register to a certain extension
by editing “strategy” option under extension configuration dialog->“Media” tag.

Make sure to configure the

“strategy” option to the smallest set to block registration attempts from anyone that doesn’t need to register

to the account.

The strategy options are:



“Local Subnet Only”: allows register requests from local IPs only. By default the local subnet where the

UCM6100 is location is allowed. User could also add more local subnets where devices are allowed to

register to this extension.



“A Specific IP Address”: allows register requests from one user specified IP only.



“Allow All”: the registration address is the entire Internet which is least recommended.

EXAMPLE: LOCAL SUBNET ONLY

1. Assuming there are multiple subnets within the office and the devices in all subnets can reach each