Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Version History

« Previous Version 5 Current »

The following points were asked by HDFC Team for Inbound IVR Audit Points as Evidence.

1.Dormancy parameters configuration for New and Existing Users. (Provide screenshot of Admin console else backend coding screenshot)

  1. Provide screenshot for Application password policy

  • Password expiry: Not Set 

  • Password history:  05 - Not Ok 

  • Failed login attempts:  Not Set 

  • Passwords should be changed at first logon - Not set 

  • Presence of two factor authentication for internet facing applications. - Not set

     

3.Evidence for interfacing applications.(Provide screenshot of backend where the APIs are present)

  1. Token Generation and Get Data API 

  2. Salesforce

  3. iSAC

  4. Patch management details for the application (Kamalio).

Phonon Replies:

  1. Dormancy parameters configuration for New and Existing Users. (Provide screenshot of Admin console else backend coding screenshot)

    1. Active Agents:

      image-20250124-124648.png

b. Pending Agents

image-20250124-124437.png

  1. Provide screenshot for Application password policy

  • Password expiry: Set.

    Screenshot 2025-01-23 160228.png

  • Password history:  05, Cannot use last 5 passwords

    image-20250124-114513.png

  • Failed login attempts:  Not Set (Video link has been shared)

  • Passwords should be changed at first logon - Not set (As passwords are set up by agents while signing up their phonon account)

  • Presence of two factor authentication for internet facing applications. - Presence of two factor authentication for internet facing applications is not set currently, but it is already in pipeline.

  1. .Evidence for interfacing applications.(Provide screenshot of backend where the APIs are present)

    1. Token Generation: https://capi.hdfc.com/Mowbly_api_live_dmz/api/Mowbly/GetData

    2. Get Data API : https://capi.hdfc.com/Mowbly_api_live_dmz/api/Mowbly/GetData

    3. Salesforce

    4. API (SF TOKEN GENERATION) https://login.salesforce.com/services/oauth2/token?grant_type=password&client_id=3MVG9fe4g9fhX0E4OpnKNh.peDwRBcWlqO4X0NmF_.A21k7V1vpmuYmiyTKEUkGfJNe1CXP03pKu9Q4K9Tf_q&client_secret=012E1027827AE9C1DBFBC4456B9B343C4809CDC30617FCF910E0FA0F01B4615A&username=phonon.integration@hdfc.com&password=Phonon@12345xw4eXhuyOsQZ6sM510Aql041j#123jG6UGNvh0xAyNF3avF0Nd881r

    5.  SF-GetAccountIDByFileNo : https://hdfclimited.my.salesforce.com/services/data/v57.0/query/?q=select id from opportunity where HDFC_DASH_File_Number__c='$flow.key.i_filenumber'

    6.  New Lead: https://central.phonon.io/socket/api/publish

    7. Open Page: https://central.phonon.io/socket/api/publish

    8. Query_SF Push : https://hdfclimited.my.salesforce.com/services/data/v57.0/sobjects/Case

    9. Request_SF Push : https://hdfclimited.my.salesforce.com/services/data/v57.0/sobjects/Case

    10. Loan_Complain_SF_Push : https://hdfclimited.my.salesforce.com/services/data/v57.0/sobjects/Case

    11. Deposit_Complian_SF Push: https://hdfclimited.my.salesforce.com/services/data/v57.0/sobjects/Case

  1.   iSAC- Need Details on this.

  • No labels

0 Comments

You are not logged in. Any changes you make will be marked as anonymous. You may want to Log In if you already have an account.
 

This document has been developed by Phonon.io for the sole and exclusive use of the customer / prospective customer with whom this document is being shared. Further, this document has been provided by Phonon.io to the recipient in good faith and based on request from the recipient for the same. This document is a confidential document and contains confidential product technology, workflow and commercial details that are for the sole usage of the intended recipients of this document. Recipients are advised not to share this document with any third party that is not the intended recipient of this document and neither to bring this document in full or parts into the public domain. Any unauthorized access may be brought to Phonon.io’s notice immediately. Phonon.io is free to take any legal action it deems necessary against any person or entity that violates this confidentiality agreement. Phonon.io is bound and governed by the rules of the state of Gujarat in India. In case you are not in agreement with the terms set in this clause or are not an intended recipient of this document, please destroy the document and intimate us of the same at info@phonon.io.