Applies to: Exchange Server 2010 SP3, Exchange Server 2010 SP2
Topic Last Modified: 2011-04-28
In Microsoft Exchange Server 2010 Unified Messaging (UM), PIN policies are defined and configured on a UM mailbox policy. Multiple UM mailbox policies can be created, depending on your requirements. When you enable a user for Unified Messaging, you associate or link the user to an existing UM mailbox policy. The UM PIN policies that are configured on the UM mailbox policy should be based on the security requirements of your organization.
Unified Messaging PIN Security
A PIN is a numeric string used in certain systems, including Unified Messaging systems, so a user can be authenticated and gain access. A PIN is a pass code users enter on the telephone to access their Exchange mailbox. The strength of the PIN depends on its length, how well it's protected, and how difficult it is to guess.
After you configure PIN settings for a UM-enabled user, you configure and manage PIN settings on the UM-enabled user's Exchange 2010 mailbox and on the UM mailbox policy associated with the UM-enabled user.
- When subscribers or a UM-enabled users use a telephone to
connect to an Exchange 2010 Unified Messaging server, they use
Outlook Voice Access to move through the Unified Messaging menu
system. However, before users can access the Unified Messaging
system, the system prompts them to input their PIN. As the
administrator, you can configure PIN settings and requirements and
perform PIN management tasks.
UM mailbox policies can be configured to increase the level of security for UM-enabled users by requiring users to comply with the predefined PIN policies for your organization.
When you modify a UM mailbox policy, you can change such settings as PIN policies, message text settings, and dialing restrictions for a single UM-enabled recipient or for multiple UM-enabled recipients. UM mailbox policies can be configured to increase the level of security for UM-enabled users.
You can increase the level of security for your network by correctly implementing and configuring the following PIN settings on a UM mailbox policy:
- The minimum number of digits required for a PIN
- The time, in days, a PIN is accepted by the system
- The number of times attempts to log on can fail before the
user's PIN will be reset
- The maximum number of logon attempts before the user is locked
out of their mailbox
- Whether to allow users to use common patterns in their PIN
- The number of past PIN entries the system should remember