Create New PIN List:

List Settings:

Name: International Calling PINs
Description: Authentication for international routes
Type: Outbound Authentication
Status: Enabled

When to Use:

• Applied to specific outbound routes
• Can have multiple PIN lists for different purposes
• Each route can reference one PIN list

Configuration Options:

PIN Length: 4-8 digits (6 recommended)
Allow Retry: Yes (3 attempts)
Invalid Action: Reject call or route to operator
Log Attempts: Yes (all attempts logged)
Timeout: 10 seconds (user must enter PIN)

PIN Format Requirements:

Recommended Format:

Length: 6 digits
Format: Numeric only
Example: 123456, 987654

Advantages:
- Long enough for security
- Easy to remember
- Fast to dial
- No confusion with letters

Security Considerations:

Too Short (4 digits):

Problem: Only 10,000 combinations
Risk: Brute force attacks possible
Use Case: Low-value routes only

Optimal (6 digits):

Combinations: 1,000,000
Security: Good balance
Usability: Easy to remember
Recommended: Most use cases

Too Long (8+ digits):

Combinations: 100,000,000+
Security: Very high
Usability: Harder to remember/dial
Use Case: High-security environments

Avoid:

• Sequential: 123456, 654321
• Repeated: 111111, 555555
• Common: 000000, 999999
• Dates: 010101 (birthdays)
• Phone extensions: Matches user extension

Security Configuration:

Attempt Limits:

Max Attempts: 3
Lockout Duration: 15 minutes
Lockout Action: Block calls from that extension
Administrator Alert: Email on lockout

Timeout Settings:

PIN Entry Timeout: 10 seconds
Retry Delay: 2 seconds (between attempts)
Total Timeout: 30 seconds (all attempts)
Failed Action: Disconnect call

Logging:

Log Successful: Yes (with timestamp, extension, destination)
Log Failed: Yes (important for fraud detection)
Log Detail: PIN entered, attempts, outcome
Retention: 90 days minimum (longer for compliance)
Alert Threshold: 5 failed attempts in 10 minutes

Advanced Security:

Time-Based: PIN only valid during certain hours
IP Restriction: PIN only valid from specific IP ranges
Extension Binding: PIN tied to specific extensions
Expiration: PIN expires after date/time
Usage Limits: Max calls per day/week per PIN

Add Individual PIN:

PIN Entry:

PIN: 274839
User: John Smith
Extension: 1001
Department: Sales
Description: International calling access
Valid From: 2025-01-01
Valid Until: 2025-12-31 (optional)
Status: Enabled

PIN Details:

• PIN: 6-digit unique code
• User: Person assigned (for reference)
• Extension: User's extension (optional binding)
• Department: For billing/tracking
• Description: Purpose/notes
• Valid From/Until: Time-based expiration
• Status: Enabled/Disabled

Best Practices:

1. Generate Randomly: Don't use sequential PINs
2. Unique: One PIN per user (no sharing)
3. Document: Record who has each PIN
4. Communicate Securely: Send PIN via secure method
5. Change Periodically: Update every 6-12 months

Bulk PIN Import:

CSV Format:

PIN,User,Extension,Department,Description,ValidFrom,ValidUntil,Status
274839,John Smith,1001,Sales,International access,2025-01-01,2025-12-31,Enabled
395048,Jane Doe,1002,Support,International access,2025-01-01,2025-12-31,Enabled
582947,Bob Johnson,1003,Sales,International access,2025-01-01,2025-12-31,Enabled

Import Process:

PIN Generation Script (Example):

import random

def generate_pin(length=6):
    """Generate random PIN avoiding common patterns"""
    while True:
        pin = ''.join([str(random.randint(0, 9)) for _ in range(length)])
        # Avoid sequential
        if pin in ['123456', '654321', '012345']:
            continue
        # Avoid repeated
        if len(set(pin)) == 1:
            continue
        # Avoid common
        if pin in ['000000', '111111', '999999']:
            continue
        return pin

# Generate 100 PINs
for i in range(100):
    print(generate_pin())

PIN Assignment Strategies:

Strategy 1: User-Specific

Approach: One PIN per user
Usage: Tied to user's extension
Benefits: 
- Clear accountability
- Easy to track usage
- Individual billing
- Simple management
Drawbacks:
- More PINs to manage
- Users must remember PIN

Strategy 2: Department

Approach: One PIN per department
Usage: All sales team shares one PIN
Benefits:
- Fewer PINs to manage
- Department-level billing
- Easy for users
Drawbacks:
- No individual accountability
- Can't identify specific user
- Shared secret less secure

Strategy 3: Project-Based

Approach: PIN per project/client
Usage: Project team shares PIN for billing
Benefits:
- Project-level cost tracking
- Easy to allocate expenses
- Temporary for project duration
Drawbacks:
- Multiple PINs per user
- Management overhead

Strategy 4: Temporary/Guest

Approach: Time-limited PINs for visitors
Usage: Contractors, guests, temporary staff
Benefits:
- Controlled access
- Automatic expiration
- Easy to revoke
- Security (no permanent access)
Setup:
- Create PIN with expiration date
- Provide to guest
- Automatically disables after date
- No cleanup required

Recommendation:

• Most Orgs: User-specific (one per user)
• Small Teams: Department-based (simpler)
• Project Work: Project-based (cost allocation)
• Visitors: Always time-limited temporary PINs

Apply PIN to Outbound Route:

Route Settings:

Route Name: International Calling
Pattern: 011. (US international prefix)
Priority: 5
Trunk: International Trunk
PIN List: International Calling PINs ← Apply here
Status: Enabled

How It Works:

1. User dials: 011-44-20-1234-5678 (UK number)
2. System matches pattern: 011.
3. Checks route: "International Calling"
4. Sees PIN List: "International Calling PINs"
5. Prompts user: "Please enter your PIN"
6. User enters: 274839#
7. System validates PIN against list
8. If valid: Routes call via International Trunk
9. If invalid: Plays error, optionally allows retry

User Experience:

User dials: 011-44-20-1234-5678
System: "Please enter your PIN followed by the pound key"
User: 274839#
System: *pause* "Please wait while we connect your call"
Call connects to London

Multiple Routes with PINs:

Scenario: Different PINs for different destinations

Route 1: International (Expensive)

Route: International Calling
Pattern: 011.
PIN List: International PINs
Users: 25 authorized users
Cost: $0.50/minute average

Route 2: Premium Numbers

Route: Premium Rate
Pattern: 1-900-XXXXXXX
PIN List: Premium Number PINs
Users: 5 managers only
Cost: $2.99/minute

Route 3: After-Hours Calling

Route: After Hours Outbound
Pattern: 9.
Time: Weekends, 6pm-8am weekdays
PIN List: After Hours PINs
Users: On-call staff only
Reason: Prevent abuse outside business hours

Route 4: Domestic Long Distance

Route: Domestic LD
Pattern: 1-NXX-NXX-XXXX
PIN List: None (no PIN required)
Reason: Low cost, all users allowed

Benefits:

• Granular control by destination
• Different security levels
• Flexible user assignment
• Cost management

Conditional PIN Requirements:

Time-Based PIN:

Use Case: Require PIN outside business hours

Configuration:
- Route: Standard Outbound
- Time Condition: After 6pm, before 8am, weekends
- If After Hours: Apply "After Hours PIN List"
- If Business Hours: No PIN required

Benefit: Normal daytime calling unrestricted, nights/weekends controlled

Location-Based PIN:

Use Case: Remote workers require PIN

Configuration:
- Remote IP ranges: Require PIN
- Office IP ranges: No PIN required
- Mobile devices: Always require PIN

Benefit: Office users have seamless experience, remote users authenticated

Destination-Based PIN:

Use Case: PIN only for expensive destinations

Routes with PIN:
- International: PIN required
- Premium rate: PIN required
- Toll-free: No PIN
- Local: No PIN
- Domestic LD: No PIN (or optional)

Benefit: Minimal disruption, security where needed

User-Based PIN:

Use Case: Only certain users require PIN

Configuration:
- Executive extensions: No PIN (trusted)
- General staff: PIN required
- Contractors/temps: PIN required + expiration

Benefit: VIPs uninterrupted, general staff controlled

PIN Authentication Testing:

Test Plan:

Test Checklist:

• Valid PIN connects successfully
• Invalid PIN rejected with error message
• Timeout disconnects call
• Retry works correctly
• Lockout after max attempts
• Administrator alert on lockout
• CDR logs show PIN usage
• Failed attempts logged
• Time-based expiration works
• Extension binding works (if configured)

User Training & Communication:

Training Materials:

Email to Users:

Subject: New International Calling PIN Required

Dear Team,

Starting January 1st, international calls will require a PIN for security and cost control.

Your PIN: 274839

How to Use:
1. Dial international number as usual: 011-country-number
2. System will prompt: "Please enter your PIN"
3. Enter your PIN: 274839
4. Press # (pound key)
5. Call will connect normally

Example:
- Dial: 011-44-20-1234-5678 (London)
- Prompt: "Please enter your PIN"
- You: 274839#
- System: "Please wait while we connect your call"

Important:
- Keep PIN confidential (do not share)
- Contact IT if you forget PIN
- Report suspicious activity

Questions? Contact [email protected]

Thanks,
IT Department

Quick Reference Card:

INTERNATIONAL CALLING PIN

Your PIN: [274839]

1. Dial: 011-country-number
2. Listen for PIN prompt
3. Enter: [Your PIN]#
4. Call connects

Tips:
- Enter PIN quickly (10 second timeout)
- Press # after PIN
- 3 attempts allowed
- Call helpdesk if locked out

Helpdesk: x5000

Training Session Agenda:

1. Why PINs required (security, cost control)
2. How to use PIN (live demo)
3. What to do if PIN fails
4. PIN security (don't share)
5. How to get help
6. Q&A

Common PIN Issues:

Issue 1: PIN Not Accepted

Symptom: User enters PIN, system says invalid
Causes:
- PIN typed incorrectly
- PIN expired
- PIN disabled
- Wrong PIN list applied to route
- User locked out after failed attempts

Resolution:
1. Verify PIN in system (copy/paste to test)
2. Check PIN status (enabled?)
3. Check expiration date
4. Verify route using correct PIN list
5. Check lockout status
6. Reset PIN or unlock user

Issue 2: No PIN Prompt

Symptom: Call proceeds without PIN prompt
Causes:
- Route not configured for PIN
- PIN list not applied
- Route priority wrong (matches different route)
- Time condition bypassing PIN

Resolution:
1. Verify PIN list assigned to route
2. Check route priority (is it matched?)
3. Check time conditions
4. Review dial plan matching
5. Test with different number

Issue 3: Timeout

Symptom: Call disconnects during PIN entry
Causes:
- User too slow entering PIN
- Timeout too short
- User confused about when to enter

Resolution:
1. Check timeout setting (increase to 15 seconds)
2. Train users to enter quickly
3. Provide clear audio prompt
4. Test with real users

Issue 4: Lockout

Symptom: User locked out after failed attempts
Causes:
- Wrong PIN entered multiple times
- User typo
- Forgotten PIN
- Possible fraud attempt

Resolution:
1. Verify legitimate user (not fraud)
2. Admin unlocks account
3. Verify/reset PIN
4. Re-train user
5. Monitor for suspicious activity

Issue 5: CDR Not Logging PIN

Symptom: Call records don't show which PIN used
Causes:
- PIN logging disabled
- CDR field not configured
- Database issue

Resolution:
1. Enable PIN logging in settings
2. Verify CDR includes PIN field
3. Check database schema
4. Re-test and verify logs