Skip to end of metadata
Go to start of metadata
You are viewing an old version of this page. View the current version. Compare with Current ·  View Page History
 

The default security settings of TIM Enterprise allow for ease of installation and are suitable for the needs of most organisations. However, if your organisation's IT security policy demands it, or you plan to expose the system to an untrusted network such as the Internet, it is recommended you harden the security using the methods described below.

NOTE: After changing any of the following settings, you will need to restart the TIM Enterprise service before changes will take effect.

Blocking invalid login attempts

The system can blacklist the source IP address of a would-be attacker if a number of unsuccessful access attempts are made within a specified period of time. The following two Registry entries determine how many invalid login attempts are permissible before the source IP is blacklisted and, if so, for how long the blacklist will remain in place until further attempts are entertained:-

Registry String data value Description
FloodFailCount = 0 Number of attempts
FloodLockTime = 60 Lockout duration

All Registry keys for TIM Enterprise are located in the following hive:-

Windows registry
Labels: