Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
330
Views
0
Helpful
2
Replies

Unity Sub Sign-In Re-Authentication..

Go to solution
Aaron Harrison
VIP Alumni
VIP Alumni

‎04-10-2007 02:27 AM - edited ‎03-18-2019 07:11 PM

Hi

On Unity 4.2, if a user enters an incorrect PIN when dialling from their own extension they are re-prompted for both the userID and PIN.

The first attempt when hitting the VM button just prompts for PIN.

Users aren't listening to the whole prompt and try to enter their PIN again causing some confusion.

Does anyone know of a way to alter this behaviour? I.e. setting the system to only require the PIN after an inital authentication failure?

Thanks

Aaron

Aaron Please remember to rate helpful posts to identify useful responses, and mark 'Answered' if appropriate!
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
lindborg
Cisco Employee
Cisco Employee

‎04-10-2007 06:39 AM

There's no setting to change this - the behavior was changed between 4.1 and 4.2 after a number of security audits across multiple products (the security team swings a big stick). One of the items was revealing that an outside caller had hit upon a valid ID - as such the behavior is that both the ID and the PIN are collected and validated as a pair - the user is not supposed to be able to figure out if the ID is valid or not when "cold calling" into the auto attendant.

When calling from a known extension (i.e. one assigned as a primary or alternate for a subscriber) the original ID input is skipped - but the failure path is the same for all calls regardless of source.

There's no configuration option or setting that alters this path at the moment. I believe the 5.0 team was looking at an option of "remembering" that the original call had called from a known extension and to provide an option to just reenter the PIN in that case, but I'm not sure if that made the list or not - best to ping your account team to pitch for it, I know a few folks have noted the behavior.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
lindborg
Cisco Employee
Cisco Employee

‎04-10-2007 06:39 AM

There's no setting to change this - the behavior was changed between 4.1 and 4.2 after a number of security audits across multiple products (the security team swings a big stick). One of the items was revealing that an outside caller had hit upon a valid ID - as such the behavior is that both the ID and the PIN are collected and validated as a pair - the user is not supposed to be able to figure out if the ID is valid or not when "cold calling" into the auto attendant.

When calling from a known extension (i.e. one assigned as a primary or alternate for a subscriber) the original ID input is skipped - but the failure path is the same for all calls regardless of source.

There's no configuration option or setting that alters this path at the moment. I believe the 5.0 team was looking at an option of "remembering" that the original call had called from a known extension and to provide an option to just reenter the PIN in that case, but I'm not sure if that made the list or not - best to ping your account team to pitch for it, I know a few folks have noted the behavior.

0 Helpful

Go to solution
Aaron Harrison
VIP Alumni
VIP Alumni
In response to lindborg

‎04-13-2007 01:15 AM

Thanks Jeff.

Aaron Please remember to rate helpful posts to identify useful responses, and mark 'Answered' if appropriate!
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents