How to Trace a Malicious Call Using Lync Server 2010

Microsoft Lync Server 2010 provides a new Enterprise Voice functionality called Malicious Call Tracing. In this blog post and accompanying video, I’ll show you how to enable this feature, report a malicious call, and locate evidence of a malicious call.

Author: Sasa Juratovic

Publication date: May 2011

Product version: Lync Server 2010

During a recent customer event in UK, I was talking about the new Enterprise Voice features in Lync Server 2010. One of the topics was Malicious Call Tracing. While preparing for the event, I was looking for details about this feature to create an end-to-end scenario. I set up my lab for video and created a screencast. I had fun creating this video and may create additional videos for future blog posts. Let me know if you like this approach and what improvements you would like to see.

My lab environment is relatively simple. I deployed Microsoft Lync Server 2010 Enterprise Edition pool (Standard Edition server will also work), Monitoring Server, and Monitoring Server reports. I also have a few Lync 2010 clients to simulate malicious call reporting.

Here is the scenario.

  1. Jane is a Lync administrator at Contoso. She updates one of the existing voice policies to allow malicious calls reporting
  2. Bob is a help desk representative at Contoso. He has Lync enabled, and the voice policy for malicious call reporting is enabled.
  3. Bob uses his Lync client to receive calls at the help desk.
  4. Bob receives a call that turns out to be very unpleasant. Bob decides to use the Lync client Report a Call feature to report the event as a malicious call.
  5. The malicious call report is sent to Monitoring Server where it is recorded in the Call Details Record database.
  6. Jane then uses Monitoring Server reports to discover details about the reported call. To filter the reported malicious call, Jane uses Diagnostic ID 51017.

Now that we understand how malicious call tracing works at the scenario level, let’s take a look at the video for some “real action.”



Malicious call tracing might not be the most exciting product feature in Lync, but it is useful if you need it. I hope this post gives you a good overview of how to enable this feature, report a malicious call, and find a malicious call in Monitoring Server reports.

Additional Information

To learn more, check out the following articles:

Lync Server Resources

We Want to Hear from You

Keywords: Lync Server 2010, malicious call tracing

Comments (4)
  1. shane says:

    Quick and easy, thanks for a great post.

    One question: how did you customise the "Report a call" dialogue box to include your support details?

  2. Sasa Juratovic says:

    Thanks for the kind comment. When you say “how did you customize the ‘Report a call’ dialogue box”, are you referring to dialog box that will open when users selects Settings->Tools->Report a Call..? If so, no customization has been done – what you see is out of the box experience. If on the other hand you’d like to customize that dialog box that is unfortunately not possible.

  3. Joe says:

    Thanks for the post but how do you block the call from coming into the Lync user once it has been determined that is a true malicious call? I thought I could do it through "Change Privacy Relationship / Block” but that is not available for a phone number in the contact list.

  4. Keith says:

    Very good article but how do you then go and blacklist or block the malicious callers number ?

Comments are closed.