Malicious Call Identification works by setting a specific flag in the CDR records. These flagged calls can be reported on, attaining whatever information is necessary to take action.
To enable and configure Malicious Call Identification, perform the following:
First navigate to the Service Parameters configuration page (System | Service Parameters).
Select the Server.
Select the Cisco CallManager Service.
Under the System section (near the top), select True for CDR Enabled Flag:
Click on Save.
Next navigate to the Serviceability page by clicking on Cisco Unified Serviceability from the Navigation drop-down:
Click on Go.
Navigate to the Alarm configuration page (Alarm | Configuration).
Select the Server.
From the Service Group drop-down select CM Services:
From the Service drop-down, select Cisco CallManager.
Click on Go.
Check Enable Alarm under the Local Syslog section.
Under the same section, select Informational from the Alarm Event Level drop...