I've just realised that if you assign an extension management console access and enable 'General System Administration', but don't want the user to have access to Administer SIP Trunks, all they need to do is download a backup file and read the XML to get the master admin account and password. This is a pretty big hole that need to be plugged ASAP. We would like to be able to give some power users access to manage settings in Ring Groups and Queues etc., but not allow them access to the trunks. We can't do this now. I think access to the backup/restore needs to be a separate permission like SIP Trunks, Reporting, Download Recordings etc.