Lucent Technologies 8.2 User Manual
DEFINITY ECS Release 8.2
Administrator’s Guide
Administrator’s Guide
555-233-506
Issue 1
April 2000
Enhancing system security
306
Basic security
11
Basic security
Keeping your system secure
The following is a partial list you can use to help secure your system. It is not
intended as a comprehensive security checklist. Refer to the BCS Products
Security Handbook for more information about these and other security-related
features.
intended as a comprehensive security checklist. Refer to the BCS Products
Security Handbook for more information about these and other security-related
features.
■
Secure the system administration and maintenance ports and/or logins on
DEFINITY ECS using the Access Security Gateway. This optional
password authentication interface program is provided to customers with
maintenance contracts.
DEFINITY ECS using the Access Security Gateway. This optional
password authentication interface program is provided to customers with
maintenance contracts.
■
Activate Security Violation Notification to report unsuccessful attempts to
access the system. Security Violation Notification lets you automatically
disable a valid login ID following a security violation involving that login
ID and disable remote access following a security violation involving a
barrier code or authorization code.
access the system. Security Violation Notification lets you automatically
disable a valid login ID following a security violation involving that login
ID and disable remote access following a security violation involving a
barrier code or authorization code.
■
Use the
list history
command to determine if unauthorized changes have
been made to the system. To assist in identifying unauthorized use of the
system, the History report lists each time a user logs on or off the system.
Refer to the DEFINITY ECS Reports for more information about this
report.
system, the History report lists each time a user logs on or off the system.
Refer to the DEFINITY ECS Reports for more information about this
report.
■
Secure trunks using Automatic Route Selection, Class of Restriction,
Facility Restriction Levels and Alternate Facility Restriction Levels,
Authorization Codes, Automatic Circuit Assurance, and Forced Entry of
Account Codes (refer to
Facility Restriction Levels and Alternate Facility Restriction Levels,
Authorization Codes, Automatic Circuit Assurance, and Forced Entry of
Account Codes (refer to
‘‘Call Detail Recording’’ on page 1221
for more
information).
■
Activate Enhanced Call Transfer for your voice messaging system, if
available. This limits transfers to valid extensions, but you also need to
restrict transfers to extensions that may offer dial tone to the caller, such as
screen extensions.
available. This limits transfers to valid extensions, but you also need to
restrict transfers to extensions that may offer dial tone to the caller, such as
screen extensions.
Preventing toll fraud
Top 15 tips to help prevent toll fraud
1. Protect system administration access
Make sure secure passwords exist for all logins that allow System
Administration or Maintenance access to the system. Change the
passwords frequently.
Administration or Maintenance access to the system. Change the
passwords frequently.