Instruction manual
Large business communications systems
5-62 Issue 9 May 2003
Security Violations Measurement reports
This report identifies invalid login attempts and the entry of invalid barrier codes. It
monitors the administration, maintenance, and remote access ports. A login
violation is reported when a forced disconnect occurs (after three invalid
attempts). Review the report daily to track invalid attempts to log in or to enter
barrier codes, both of which may indicate hacker activity.
See Reports for Avaya™ Communication Manager for complete details on these
reports.
For Communication Manager, MultiVantage™ Software, DEFINITY ECS and
DEFINITY G1, G3, and System 75:
■ Use list measurements security-violations to obtain this report, which is
updated hourly.
For DEFINITY G1 and System 75, only counts for invalid login attempts
and invalid remote access attempts are provided.
For Communication Manager, MultiVantage™ Software, DEFINITY ECS and
DEFINITY G3, the report is divided into two sub-reports, a Summary report and a
Detail report. The Security Violations Summary report has the following fields:
NOTE:
The report header lists the switch name, date and time the report was
requested.
— Counted Since: The time at which the counts on the report were last
cleared and started accumulating again, or when the system was
initialized.
— Barrier Codes: The total number of times a user entered a valid or invalid
remote access barrier code, and the number of resulting security violations.
Barrier Codes are used with remote access trunks.
— Station Security Code Origination/Total: The number of calls originating
from either stations or trunks that generated valid or invalid station security
codes, the total number of such calls, and the number of resulting security
violations.
— Authorization Codes: The number of calls that generated valid or invalid
authorization codes, the total number of such call, and the number of
resulting security violations. Calls are monitored based on the following
origination types.
■ Station
■ Trunk (other than remote access)
■ Remote access
■ Attendant