Monitoring Internal And External Activity By Calling Line Id; Nortel Callpilot; Administrator Guide; Nn44200-601 01.11 Standard - Nortel CallPilot Administrator's Manual

Nortel callpilot: user guide

Hide thumbs Also See for CallPilot:

Install manual (286 pages)

User manual (182 pages)

Installation and configuration manual (124 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

Table of Contents

106 Chapter 7 Security recommendations

Viewing the details for a speciﬁc event or return code

You can click the Event in the System/Event Browser to open the Event Code

Help. If the help does not automatically display the desired information, click

the Index tab in the left pane of this help ﬁle and type the event or return

code as the keyword to ﬁnd. The code is displayed in the index list, and

when you click the code in the index list, the right pane refreshes to display

the details for the speciﬁed event or return code.

Monitoring internal and external activity by calling line ID

When a call comes in to the system, CallPilot keeps track of the CLID, if

available. The CLID identiﬁes a caller to the system. If you identify certain

CLIDs as suspicious (possibly the number from which a hacker is calling in to

your system), you can use CallPilot Security Administration to monitor them.

How to identify suspicious CLIDs

You might become suspicious of certain CLIDs under the following

conditions:

•

Notiﬁcation of access by monitored CLIDs

When thru-dial attempts are monitored, an alarm is generated whenever a

monitored CLID gains access to the system and places an outgoing call.

It does not matter how the call was transferred. All thru-dial activity that

originates from the monitored CLID generates an alarm.

If you would like to monitor speciﬁc mailboxes:

a. Select Selected.

Result: The Add and Delete buttons are enabled.

b. Type in a selected mailbox to be monitored.

c. Click Add.

Note: To remove a mailbox entry, highlight the entry and

click delete.

Click Save to enable the changes.

You receive an Excessive After-Hours Logons alert. This alert reports

the mailbox number and caller DN (the CLID).

You run the Mailbox Call Session Summary report on mailboxes you

suspect are targets of hackers and notice calls repeatedly originating

from certain caller DNs.

Nortel CallPilot

Administrator Guide

NN44200-601 01.11 Standard

5.0 9 November 2007

—End—

Table of Contents

Show Quick Links

Quick Links:
Logging on to the Callpilot Server...

Hide quick links:

Table of Contents

Monitoring Internal And External Activity By Calling Line Id; Nortel Callpilot; Administrator Guide; Nn44200-601 01.11 Standard - Nortel CallPilot Administrator's Manual

Monitoring internal and external activity by calling line ID

Nortel CallPilot

Administrator Guide

NN44200-601 01.11 Standard

Hide quick links:

Related Manuals for Nortel CallPilot

Related Content for Nortel CallPilot

Table of Contents