CAUTION: See Technical Bulletin, MD4058-NA-0x for information on how to protect against toll fraud.
To maintain a secure system
If someone leaves
the company, delete the user's name from the User
Authorization Profile and the Telephone
Directory.
Also, disable any personal accounts and change the user names
and passwords at ALL levels that they may have had access to.
Change all account codes that are known by any user who leaves the company. Change account codes in the Independent Account Code Definition form.
Ensure that you record user names, passwords, and account codes, and that you store them in a secure place.
Check the SMDR logs for billing irregularities.
In the Trunk Service Assignment form, assign all trunks with a Class of Restriction (COR) that prohibits external calls.
In the Station Service Assignment form, assign all voice mail ports, auto attendants, and RADs with a COR that prohibits external calls.
If the system requires DISA trunks ensure that you use forced account codes. Change all account codes that are known by any user who leaves the company. See the Independent Account Code Definition form. If the system does not require DISA trunks, ensure that DISA trunks are not programmed in the Miscellaneous Assignment form.
If DISA is required, set the "DISA failed attempts before lock-out" parameter and the "DISA number lock-out" parameter in the System Options Assignment form.
To ensure that users cannot forward an incoming call to a route that provides central office dial tone, set Call Forward External to NO in the Class of Service Options Assignment form for the set.
