🔧 VOS3000 Agent Account: Reseller Authorization Management Guide

Welcome to the ultimate guide on VOS3000 agent account configuration and reseller authorization management. If you’re running a VoIP wholesale or retail business using VOS3000, understanding how agent accounts work is absolutely critical for scaling your operations, delegating responsibilities, and building a profitable multi-level reseller network.

The VOS3000 agent account system is one of the most powerful features in the VOS3000 softswitch platform. It allows administrators to create hierarchical account structures where parent accounts (agents) can manage their own sub-accounts, handle payments, configure gateways, and even create sub-agents — all without needing direct admin intervention for every task.

In this comprehensive guide, we’ll walk through every aspect of the VOS3000 agent account system — from basic setup to advanced authorization management, sub-account filtering, number section limitations, and real-world deployment scenarios. Whether you’re a system administrator, a VoIP operator, or a reseller yourself, this guide has everything you need.

📖 Reference: VOS3000 User Manual V2.1.9.07, Sections 2.4.2 (Page 16), 2.4.3 (Page 22), 2.4.5 (Pages 24-25), 2.4.6 (Page 26)

🏢 What Is a VOS3000 Agent Account?

A VOS3000 agent account is a specialized account type within the VOS3000 softswitch that has the authority to manage other accounts beneath it — known as sub-accounts. Unlike ordinary accounts that simply originate or terminate calls, an agent account acts as a managerial entity that can create, modify, delete, and control its subordinate accounts.

According to the VOS3000 User Manual (Section 2.4.3, Page 22):

“Agent accounts differ from ordinary accounts in that there are accounts belonging to agent accounts. Once an account becomes an agent account, it will appear in the navigation tree.”

This means that the moment an account has sub-accounts assigned to it, VOS3000 automatically recognizes it as an agent account. The system then provides additional management capabilities and UI elements (like the navigation tree entry) that are not available for ordinary accounts.

💡 Why VOS3000 Agent Accounts Matter for Your Business

In the VoIP industry, the VOS3000 agent account system is the backbone of reseller operations. Here’s why it matters:

• 🔑 Delegation of Control: System admins don’t need to manage every single end-user account. Agent accounts can handle their own sub-account management.
• 💰 Revenue Distribution: Each agent manages their own payment collection, making multi-level billing seamless.
• 📊 Scalability: As your business grows from 10 customers to 10,000, the agent hierarchy keeps everything organized.
• 🛡️ Security: Agent accounts can only manipulate their own sub-accounts, ensuring data isolation and security.
• ⚡ Efficiency: Agents can perform routine operations (adding phones, making payments) without waiting for admin approval.

The VOS3000 agent account system is specifically designed to “facilitate agent development” (VOS3000 Manual, Section 2.4.5, Page 24), meaning it provides the tools resellers need to grow their business independently while the platform maintains overall control.

⚖️ Agent Account vs. Ordinary Account: Key Differences

Understanding the distinction between ordinary and agent accounts in VOS3000 is fundamental to proper system configuration. Let’s examine the critical differences:

As shown in the table above, the VOS3000 agent account transforms a simple calling account into a management powerhouse. The key insight from the VOS3000 manual (Section 2.4.2, Page 16) is that the account category field is non-editable — it’s automatically determined by the system based on whether the account has sub-accounts or not.

⚙️ How VOS3000 Agent Accounts Work

The VOS3000 agent account system operates on a hierarchical principle. Let’s break down the core mechanics:

🔄 Automatic Agent Promotion

One of the most important concepts in VOS3000 is that agent status is automatically assigned. When you create an account and assign sub-accounts to it (by setting the Agent ID field on those sub-accounts), the parent account automatically becomes an agent account. The VOS3000 manual (Section 2.4.2, Page 16) states:

“When an account has sub accounts, it automatically becomes an agent.”

This means you don’t need to manually flip a switch to create an agent account — the system handles this dynamically based on the account relationships you establish.

🔗 The Agent ID Field

Every account in VOS3000 has an Agent ID field. This field specifies the parent account (the agent) to which this account belongs. Key rules:

• 📌 The Agent ID must reference an existing account in the system
• 📌 The parent account must exist before you can assign it as an Agent ID
• 📌 An account without an Agent ID is a top-level account (or a standalone account)
• 📌 When an account is created by an agent, it must be designated to an agent account (VOS3000 Manual, Section 2.4.5, Page 25)

The Agent ID relationship forms the backbone of the entire VOS3000 agent account hierarchy and determines the chain of command within your reseller network.

🛡️ Scope of Manipulation

A critical security feature of the VOS3000 agent account system is that an agent account can only manipulate its own sub-accounts (VOS3000 Manual, Section 2.4.5, Page 25). This means:

• 🔒 Agent A cannot see or modify Agent B’s sub-accounts
• 🔒 Each agent’s scope is strictly limited to their own hierarchy
• 🔒 Even sub-agents created by an agent fall under that agent’s control
• 🔒 Only system administrators have access to all accounts

This design ensures complete isolation between different resellers using the same VOS3000 platform — a fundamental requirement for multi-tenant VoIP operations.

📝 Step-by-Step: Creating a VOS3000 Agent Account

Creating a VOS3000 agent account involves several steps. Let’s walk through the complete process:

Step 1: Create the Parent Account

First, you need to create the account that will become the agent. Navigate to the Account Management section in VOS3000:

1. 🖥️ Log in to VOS3000 with administrator credentials
2. 📋 Navigate to Account Management (Section 2.4.2, Page 16)
3. ➕ Click Add to create a new account
4. 📝 Fill in the required account details
5. 💾 Save the account

Step 2: Assign Sub-Accounts to the Agent

To transform the ordinary account into a VOS3000 agent account, you need to assign sub-accounts:

1. 👤 Create a new account (or edit an existing one)
2. 🔗 In the Agent ID field, enter the account ID of the parent account
3. ✅ The parent account must already exist in the system
4. 💾 Save the sub-account
5. 🔄 The parent account automatically becomes an agent account

Step 3: Verify Agent Account Status

After assigning sub-accounts, verify that the account has been promoted to agent status:

1. 🔍 Check the Account Category field — it should now display “Agent”
2. 🌲 Look for the account in the navigation tree — it should now appear there
3. 📂 Double-click the agent account to open the Sub Account Management interface

Step 4: Configure Authorizations

Now configure what operations the VOS3000 agent account can perform. This is covered in detail in the Authorization Management section below.

The complete workflow can be summarized in this configuration checklist:

📂 Sub-Account Management in VOS3000

Once an account becomes a VOS3000 agent account, it gains access to the Sub-Account Management interface. This is where agents can view, manage, and control all accounts under their jurisdiction.

🔑 Accessing Sub-Account Management

According to the VOS3000 manual (Section 2.4.3, Page 22):

“Double-click the agent account to open ‘Sub account management’.”

This simple action opens a dedicated management interface for that specific agent’s sub-accounts. From here, the agent can perform all authorized operations on their sub-accounts.

🔍 Direct vs. All Sub-Account Filter

The Sub-Account Management interface provides two important filter options (VOS3000 Manual, Section 2.4.3, Page 22):

The distinction between “Direct” and “All” is especially important in multi-level reseller scenarios. When an agent creates a sub-agent (who in turn has their own sub-accounts), the “Direct” filter shows only the immediate children, while “All” reveals the entire hierarchy beneath that agent.

⚡ Sub-Account Operations

From the Sub-Account Management interface, authorized agents can perform the following operations on their sub-accounts:

• ➕ Add new sub-accounts — Create new customer or sub-agent accounts
• ✏️ Modify sub-accounts — Update account settings, rates, and configurations
• 🗑️ Delete sub-accounts — Remove accounts that are no longer needed
• 📞 Add/delete/modify phones — Manage phone numbers for sub-accounts
• 💳 Add/delete/modify phone cards — Manage calling card operations
• 🌐 Add gateways — Configure SIP trunks and gateway endpoints
• 🔧 Modify gateway information — Update gateway settings and parameters
• 📊 Modify gateway capacity — Adjust concurrent call limits on gateways
• 💰 Process payments — Add credit/balance for sub-accounts

Each of these operations requires the corresponding authorization to be enabled for the VOS3000 agent account, which we’ll cover in the next section.

🔐 VOS3000 Agent Authorization Management

Authorization management is the heart of the VOS3000 agent account system. It determines exactly what operations an agent can and cannot perform. The VOS3000 manual (Section 2.4.5, Pages 24-25) provides a comprehensive list of authorizations that can be granted to agent accounts.

🛡️ Why Authorization Management Matters

Proper authorization configuration is essential because:

• 🔒 Security: Prevents unauthorized operations that could disrupt service or cause financial loss
• 🎯 Role-Based Access: Different agents may need different levels of control based on their business role
• 📈 Business Control: Administrators can limit what agents can do to maintain oversight
• ⚖️ Compliance: Ensures agents operate within the boundaries defined by the platform operator
• 🔄 Flexibility: Authorization can be adjusted as business relationships evolve

As stated in the VOS3000 manual (Section 2.4.5, Page 24):

“This function facilitates agent development. Agent user can have agent-typed account in system. Admins can create accounts limiting rights.”

This means the system administrator retains ultimate control — they decide which authorizations each VOS3000 agent account receives, enabling a fine-grained approach to permission management.

📋 Complete Authorization List

The following table lists all available authorizations for VOS3000 agent accounts as documented in the VOS3000 User Manual (Section 2.4.5, Pages 24-25):

Each authorization can be independently enabled or disabled for each VOS3000 agent account, giving administrators precise control over what each agent can do.

🔍 Detailed Breakdown of Authorization Types

Let’s examine each authorization type in detail to understand exactly what they enable and when you should grant them.

1️⃣ Add/Delete/Modify Account Authorization

This is the most fundamental authorization for a VOS3000 agent account. It allows the agent to:

• ➕ Add: Create new sub-accounts under the agent’s hierarchy
• 🗑️ Delete: Remove existing sub-accounts that are no longer needed
• ✏️ Modify: Edit sub-account settings including rates, codecs, prefixes, and more

When to grant: This authorization should be granted to any agent who needs to manage their own customer base. Without this, the agent cannot independently onboard new customers or modify existing ones.

Important note: As stated in the VOS3000 manual (Section 2.4.5, Page 25):

“Accounts created by agent must be designated to an agent account.”

This means every account created by an agent is automatically linked back to that agent — they cannot create “orphan” accounts that exist outside the agent hierarchy.

2️⃣ Add/Delete/Modify Phone Authorization

This authorization allows the VOS3000 agent account to manage phone numbers for sub-accounts:

• 📞 Add: Assign new phone numbers to sub-accounts
• 🗑️ Delete: Remove phone numbers from sub-accounts
• ✏️ Modify: Update phone number settings and configurations

When to grant: Essential for agents who manage DID numbers or need to assign specific caller IDs to their sub-accounts. Particularly important for retail VoIP resellers.

3️⃣ Add/Delete/Modify Phone Card Authorization

Phone card management is crucial for prepaid calling card businesses:

• 💳 Add: Create new calling card batches
• 🗑️ Delete: Remove calling card configurations
• ✏️ Modify: Update calling card rates and settings

When to grant: Only for agents who specifically operate calling card services. This authorization should be withheld from agents who don’t need calling card functionality.

4️⃣ Add/Delete Gateway Authorization

Gateway management is one of the highest-risk authorizations:

• 🌐 Add: Create new SIP gateways or trunk endpoints for sub-accounts
• 🗑️ Delete: Remove existing gateway configurations

When to grant: Only for trusted agents who need to configure their own SIP trunks or gateway endpoints. Most resellers do not need this authorization — the administrator typically manages gateway configurations centrally.

For more information on gateway and vendor configurations, see our guide on allowing specific clients for specific vendors in VOS3000.

5️⃣ Modify Gateway Information Authorization

This authorization allows updating existing gateway settings:

• 🔧 IP Address: Change the gateway IP address
• 🔌 Port: Modify the SIP signaling port
• 🎵 Codec: Update the supported codec list
• 📡 Protocol: Change SIP protocol settings
• 📝 Prefix: Modify dial prefix configurations

When to grant: For agents who manage their own SIP infrastructure and need to update gateway parameters when their network changes. This is a high-risk authorization that should be carefully controlled.

6️⃣ Modify Gateway Capacity Authorization

This authorization controls the ability to adjust gateway concurrent call limits:

• 📊 Increase capacity: Allow more simultaneous calls through a gateway
• 📉 Decrease capacity: Reduce the number of simultaneous calls

When to grant: Useful for agents who need to manage their own bandwidth allocation. For instance, a reseller might need to increase capacity during peak hours and reduce it during off-peak times.

7️⃣ Payment for This Account Authorization

This authorization allows the VOS3000 agent account to process payments (credit top-ups) for its own account:

• 💰 Add balance: Increase the account’s calling credit
• 📋 View payment history: Track all payment transactions

When to grant: This is typically granted to agents who operate on a prepaid model and need to manage their own balance. However, in most wholesale setups, the administrator manages top-ups centrally, so this authorization is often disabled.

8️⃣ Payment for Sub Accounts Authorization

This is perhaps the most business-critical authorization for resellers:

• 💰 Top up sub-accounts: Add credit to customer accounts
• 📊 Manage sub-account balances: Distribute credit across multiple sub-accounts
• 📋 Track payments: Monitor all payment activities in the sub-account hierarchy

When to grant: Essential for any VOS3000 agent account that operates as a reseller. Without this, the agent cannot manage their customers’ balances, which is a core reseller function.

The following authorization matrix shows recommended configurations for different agent types:

📵 Number Section Limitation for Agent Accounts

The Number Section Limitation feature (VOS3000 Manual, Section 2.4.6, Page 26) allows administrators to restrict the phone number prefixes that a VOS3000 agent account (and its sub-accounts) can use. This is a powerful tool for controlling call routing and preventing unauthorized destination access.

🔧 How Number Section Limitation Works

Number Section Limitation works by defining allowed or blocked phone number prefixes for specific accounts:

• 📱 Prefix-based filtering: Controls which number prefixes (e.g., country codes, area codes) the account can dial
• 🔄 Inherited by sub-accounts: Sub-accounts inherit the limitations of their parent agent account
• 🛡️ Security layer: Prevents agents from routing calls to unauthorized or expensive destinations
• 📊 Business control: Allows platform operators to segment destination access by agent tier

📋 Number Section Limitation Examples

The Number Section Limitation feature is particularly useful when combined with the callee rewrite rule and prefix conversion settings in VOS3000, as it ensures that agents can only process calls for destinations they’re authorized to handle.

💳 CTD Billing Models: Standard vs. Flow

The VOS3000 agent account system supports two CTD (Call Type Definition) billing models, as documented in the VOS3000 manual (Section 2.4.2, Page 16):

📊 Standard CTD Billing Model

The Standard billing model is the default and most commonly used model in VOS3000:

• 📞 Per-minute billing: Calls are billed based on duration
• 🔄 Rating by destination: Different rates apply to different destinations
• 💰 Prepaid/Postpaid: Supports both payment models
• 📋 CDR-based: All billing is calculated from Call Detail Records

🔄 Flow CTD Billing Model

The Flow billing model is specifically designed for callback business operations (VOS3000 Manual, Section 2.4.2, Page 16):

• 📲 Callback-oriented: Designed for callback service providers
• 🔗 Two-leg billing: Handles the unique billing requirements of callback calls
• 🌐 DID integration: Works with DID-based callback triggers
• 📊 Specialized CDR processing: Different CDR handling for callback scenarios

When configuring a VOS3000 agent account, choose the Standard model unless you specifically operate a callback business. The Flow model introduces additional complexity that is unnecessary for standard wholesale or retail VoIP operations.

🏗️ Multi-Level Reseller Hierarchy

One of the most powerful aspects of the VOS3000 agent account system is the ability to create multi-level reseller hierarchies. The VOS3000 manual (Section 2.4.5, Page 25) confirms that “Agent can create sub-accounts for sub-agents”, enabling a tree-like organizational structure.

🌳 Understanding the Hierarchy Structure

In a VOS3000 deployment, the account hierarchy typically looks like this:

🏢 System Administrator (Admin)
├── 🏭 Master Agent (VOS3000 Agent Account - Level 1)
│   ├── 🛒 Sub-Agent A (VOS3000 Agent Account - Level 2)
│   │   ├── 👤 End Customer 1
│   │   ├── 👤 End Customer 2
│   │   └── 👤 End Customer 3
│   ├── 🛒 Sub-Agent B (VOS3000 Agent Account - Level 2)
│   │   ├── 👤 End Customer 4
│   │   └── 🛒 Sub-Sub-Agent (Level 3)
│   │       ├── 👤 End Customer 5
│   │       └── 👤 End Customer 6
│   └── 👤 Direct Customer 1
├── 🏭 Master Agent 2 (VOS3000 Agent Account - Level 1)
│   ├── 👤 Direct Customer 7
│   └── 👤 Direct Customer 8
└── 👤 Standalone Customer (No agent hierarchy)

📏 Key Hierarchy Rules

The VOS3000 agent account hierarchy follows strict rules that maintain order and security:

1. 🔗 Agent ID Chain: Every account (except top-level) must have an Agent ID pointing to its parent
2. 🔒 Scope Limitation: An agent can only manipulate accounts within its own hierarchy
3. 📋 Authorization Inheritance: Sub-agents can only have authorizations that are a subset of their parent’s authorizations
4. 📐 Mandatory Designation: Accounts created by agents must be designated to an agent account
5. 🌲 Navigation Tree: Each agent account appears in the navigation tree with its sub-accounts organized beneath it

🌍 Real-World Hierarchy Example

Consider a VoIP operator based in Bangladesh who serves the South Asian market. Their VOS3000 agent account hierarchy might look like this:

This hierarchical structure enables each level to operate independently within their authorized scope while maintaining overall system integrity.

🌲 Agent Account Navigation Tree

A key visual indicator of a VOS3000 agent account is its appearance in the navigation tree. The VOS3000 manual (Section 2.4.3, Page 22) explicitly states that once an account becomes an agent, “it will appear in the navigation tree.”

🖥️ Navigation Tree Features

The navigation tree provides several important capabilities:

• 📂 Hierarchical View: Visual representation of the agent-sub-account relationship
• 🖱️ Quick Access: Double-click an agent account to open Sub-Account Management
• 🔍 Filter Options: Toggle between “Direct” and “All” views for sub-account display
• 📊 Real-time Updates: The tree updates dynamically as sub-accounts are added or removed

💡 Using the Navigation Tree Effectively

For administrators managing large numbers of VOS3000 agent accounts, the navigation tree is an essential tool. Here are some tips:

1. 🏷️ Use descriptive account names: Name agent accounts clearly to identify them in the tree (e.g., “Agent-BD-Wholesale” instead of “A001”)
2. 🔍 Use the “Direct” filter for quick access: When you only need to work with immediate sub-accounts, the “Direct” filter reduces visual clutter
3. 🌐 Use “All” for audit purposes: When auditing an agent’s entire hierarchy, switch to “All” to see the complete sub-account tree
4. 📐 Keep hierarchy depth reasonable: While VOS3000 supports multi-level hierarchies, keeping it to 2-3 levels makes the navigation tree more manageable

✅ Best Practices for VOS3000 Agent Account Management

Based on extensive experience with VOS3000 deployments, here are the best practices for managing VOS3000 agent accounts effectively:

🛡️ Security Best Practices

1. 🔐 Principle of Least Privilege: Only grant the minimum authorizations an agent needs to perform their business functions. Don’t give gateway management access to retail resellers.
2. 🔒 Regular Authorization Audits: Periodically review agent authorizations to ensure they still align with business needs. Remove any authorizations that are no longer required.
3. 📱 Apply Number Section Limitations: Always configure prefix restrictions for agents to prevent unauthorized destination routing.
4. 📊 Monitor Payment Activities: Keep a close eye on payment authorizations, especially for high-volume agents. Consider disabling “Payment for this account” for agents who should only process sub-account payments.
5. 🔄 Use Strong Passwords: Ensure all agent accounts use strong, unique passwords and change them regularly.

⚙️ Operational Best Practices

1. 📋 Document Your Hierarchy: Maintain a clear diagram of your agent hierarchy. This helps with troubleshooting and onboarding new team members.
2. 🏷️ Naming Conventions: Use consistent naming conventions for agent accounts. For example: “[Region]-[Type]-[Name]” like “BD-Wholesale-AcmeTel”.
3. 📊 Regular Balance Reviews: Monitor agent account balances to ensure they have sufficient credit for their operations. Set up alerts for low-balance situations.
4. 🔄 Test Before Deployment: Always test new agent configurations in a non-production environment before deploying to your live system.
5. 📋 Backup Configurations: Regularly backup your VOS3000 configuration, including agent account settings and authorizations.

💰 Business Best Practices

1. 📈 Tier-Based Authorization: Create different authorization profiles for different agent tiers (e.g., Silver, Gold, Platinum) with progressively more capabilities.
2. 🔄 Sub-Agent Approval Process: Implement an approval process before allowing agents to create sub-agents, preventing uncontrolled hierarchy growth.
3. 📊 CDR Monitoring: Use the CDR portal to monitor call patterns for each agent. For help with CDR reporting, see our guide on generating vendor billing reports in the CDR portal.
4. 🛡️ Prepaid Vendor Routing: Configure call routing to only pass calls to vendors with positive balance. Learn more in our article on prepaid vendor call routing in VOS3000.

⚠️ Common Mistakes and How to Avoid Them

When working with VOS3000 agent accounts, administrators often make these common mistakes:

❌ Mistake 1: Granting All Authorizations by Default

One of the most dangerous mistakes is giving every agent all available authorizations. This creates unnecessary security risks and can lead to accidental misconfigurations.

Solution: Follow the principle of least privilege. Start with minimal authorizations and add more only when there’s a documented business need.

❌ Mistake 2: Not Using Number Section Limitations

Without Number Section Limitations, agents can route calls to any destination, potentially resulting in unexpected costs or fraud.

Solution: Always configure Number Section Limitations for every VOS3000 agent account. Review and update them regularly. For fraud prevention, also consider the VOS3000 extended firewall configuration.

❌ Mistake 3: Creating Overly Deep Hierarchies

While VOS3000 supports multi-level agent hierarchies, creating too many levels makes management complex and can impact system performance.

Solution: Limit your hierarchy to 2-3 levels. If you need more levels, consider flattening the structure by creating separate top-level agents instead.

❌ Mistake 4: Ignoring the “Direct” vs. “All” Filter

Many administrators don’t realize the importance of the “Direct” and “All” filter in Sub-Account Management. Using the wrong filter can lead to confusion about the scope of an agent’s hierarchy.

Solution: Use “Direct” for day-to-day management and “All” for auditing and comprehensive reviews.

❌ Mistake 5: Not Setting Agent ID Correctly

Setting the wrong Agent ID can break the hierarchy chain and lead to accounts being managed by the wrong agent.

Solution: Always double-check the Agent ID field when creating sub-accounts. The parent account must exist before you can reference it as an Agent ID. Remember: “The Account id of its parent account. Parent account must exist” (VOS3000 Manual, Section 2.4.2, Page 16).

❌ Mistake 6: Choosing the Wrong CTD Billing Model

Selecting the Flow billing model when you’re not running a callback business introduces unnecessary complexity.

Solution: Use the Standard CTD billing model unless you specifically operate callback services.

🔧 Troubleshooting Agent Account Issues

When issues arise with your VOS3000 agent account setup, here are the most common problems and their solutions:

For faster troubleshooting support, check our guide on faster VOS3000 support and easy problem troubleshooting.

🌍 Real-World Deployment Scenarios

Let’s explore how the VOS3000 agent account system is used in real-world VoIP business scenarios:

📱 Scenario 1: Retail VoIP Reseller

A retail VoIP provider wants to allow regional resellers to manage their own customers independently:

• 🏢 Setup: Create a top-level agent account for each regional reseller
• 🔐 Authorizations: Account management, phone management, payment for sub-accounts
• 📵 Limitations: Number section limited to local country code only
• 📊 Billing: Standard CTD model with per-minute rates
• 💰 Result: Each reseller manages their own customers, processes their own payments, and operates within their designated area

🏭 Scenario 2: Wholesale SIP Trunk Provider

A wholesale provider serves enterprise customers who need SIP trunks with their own PBX systems:

• 🏢 Setup: Create agent accounts for each enterprise customer with PBX management needs
• 🔐 Authorizations: Gateway management, gateway modification, capacity modification, payment
• 📵 Limitations: Limited to specific destination prefixes based on contract
• 📊 Billing: Standard CTD model with volume-based rates
• 💰 Result: Enterprise customers can manage their own SIP trunks and adjust capacity as needed

💳 Scenario 3: Calling Card Operator

A calling card operator wants to distribute card sales through regional distributors:

• 🏢 Setup: Create agent accounts for each distributor
• 🔐 Authorizations: Account management, phone card management, payment for sub-accounts
• 📵 Limitations: Restricted to specific country destinations based on card type
• 📊 Billing: Standard CTD model (or Flow for callback card operations)
• 💰 Result: Distributors can create and manage calling card batches for their regions

🌐 Scenario 4: Multi-Country VoIP Operator

A large VoIP operator serving multiple countries needs a structured hierarchy:

• 🏢 Setup: Create top-level agent accounts for each country, with sub-agents for each city or region
• 🔐 Authorizations: Varied by level — country agents get full authorizations, city agents get limited set
• 📵 Limitations: Each country agent limited to their country’s prefixes
• 📊 Billing: Standard CTD model with country-specific rate cards
• 💰 Result: Organized multi-country operation with appropriate delegation at each level

The following table summarizes the authorization configuration for each scenario:

🔄 VOS3000 Agent Account Configuration Workflow

Below is the complete recommended workflow for setting up a new VOS3000 agent account from scratch:

VOS3000 AGENT ACCOUNT SETUP WORKFLOW
=====================================

Step 1: CREATE PARENT ACCOUNT
  → Navigate to Account Management
  → Click "Add" to create new account
  → Fill in account details (name, password, billing model)
  → Select CTD Billing Model: Standard (or Flow for callback)
  → Save the account
  → Note the Account ID

Step 2: CONFIGURE NUMBER SECTION LIMITATION
  → Open the account settings
  → Configure Number Section Limitation (Page 26)
  → Add allowed/blocked prefixes
  → Save settings

Step 3: CREATE SUB-ACCOUNTS
  → Create new accounts for the agent's customers
  → Set Agent ID = parent account's Account ID
  → Configure sub-account settings (rates, codecs, etc.)
  → Verify parent account category changes to "Agent"

Step 4: CONFIGURE AUTHORIZATIONS
  → Navigate to Authorization Management (Page 24)
  → Enable required authorizations:
     ☑ Add/delete/modify account
     ☑ Add/delete/modify phone
     ☑ Add/delete/modify phone card
     ☑ Add/delete gateway
     ☑ Modify gateway information
     ☑ Modify gateway capacity
     ☑ Payment for this account
     ☑ Payment for sub accounts
  → Save authorization settings

Step 5: VERIFY CONFIGURATION
  → Check navigation tree for agent account appearance
  → Double-click agent to open Sub-Account Management
  → Test "Direct" and "All" filters
  → Verify agent can perform authorized operations
  → Test that agent CANNOT perform unauthorized operations

Step 6: DOCUMENT AND MONITOR
  → Document the agent hierarchy
  → Set up monitoring for balance thresholds
  → Schedule regular authorization audits
  → Review CDR reports for abnormal patterns

🚀 Advanced Tips for VOS3000 Agent Account Management

📊 Tip 1: Bulk Sub-Account Creation

When you need to create many sub-accounts under a single VOS3000 agent account, consider the following approach:

• 📋 Prepare a list of all sub-account details before starting
• 🔗 Ensure the parent agent account is already created and verified
• 📝 Note the exact Agent ID to avoid misconfigurations
• 🔄 Create accounts in batches to maintain quality control
• ✅ Verify each batch before proceeding to the next

📋 Tip 2: Create Authorization Templates

Instead of configuring authorizations individually for each VOS3000 agent account, create standard templates:

• 🛒 Retail Template: Account + Phone + Payment (sub)
• 🏭 Wholesale Template: Account + Gateway + Gateway Info + Gateway Capacity + Payment (sub)
• 💳 Calling Card Template: Account + Phone Card + Payment (sub)
• 🌐 Full Access Template: All authorizations (use sparingly)

Using templates ensures consistency and reduces the risk of misconfiguration across your agent base.

📊 Tip 3: Monitor Agent Account Activity

Regular monitoring of VOS3000 agent account activity helps detect issues early:

• 📈 Call Volume Trends: Sudden spikes may indicate fraud or misconfiguration
• 💰 Balance Trends: Rapidly depleting balances need investigation
• 👤 Sub-Account Growth: Unusual growth patterns may require authorization review
• 🌐 Gateway Changes: Unauthorized gateway modifications can disrupt service

For license information and version capabilities that may affect agent account features, check our guide on VOS3000 license version and pricing details. You can also download the latest VOS3000 software from the official VOS3000 downloads page.

❓ Frequently Asked Questions

Q1: How do I convert an ordinary account to a VOS3000 agent account?

A: You don’t need to manually convert an account. In VOS3000, agent status is automatically assigned when an account has sub-accounts. Simply create a sub-account and set its Agent ID to the ordinary account’s ID. The ordinary account will automatically become a VOS3000 agent account and appear in the navigation tree. As the manual states (Section 2.4.2, Page 16): “When an account has sub accounts, it automatically becomes an agent.”

Q2: Can a VOS3000 agent account create sub-agents (agents under agents)?

A: Yes! The VOS3000 manual (Section 2.4.5, Page 25) explicitly states that “Agent can create sub-accounts for sub-agents.” This means an agent can create sub-accounts that are themselves agents, building a multi-level reseller hierarchy. Each sub-agent can then manage their own set of sub-accounts, enabling complex business structures.

Q3: What happens if I delete a VOS3000 agent account that has sub-accounts?

A: Deleting a VOS3000 agent account that has active sub-accounts requires careful handling. You should first reassign or delete all sub-accounts before removing the parent agent account. Always check the “All” filter in Sub-Account Management to see the complete hierarchy before proceeding with deletion. It’s recommended to back up your configuration before making such changes.

Q4: Can I restrict an agent to only certain call destinations?

A: Absolutely. Use the Number Section Limitation feature (VOS3000 Manual, Section 2.4.6, Page 26) to restrict the phone prefixes that an agent’s sub-accounts can dial. This is essential for preventing agents from routing calls to expensive or unauthorized destinations. Each agent can have different prefix restrictions based on their business agreement.

Q5: What is the difference between “Direct” and “All” sub-account filters?

A: The “Direct” filter shows only the immediate (first-level) sub-accounts directly under the VOS3000 agent account. The “All” filter shows the entire hierarchy, including sub-sub-accounts and sub-agents’ sub-accounts. Use “Direct” for day-to-day management and “All” for comprehensive auditing. This feature is documented in Section 2.4.3, Page 22 of the VOS3000 manual.

Q6: Should I use the Standard or Flow CTD billing model for my agent account?

A: Use the Standard CTD billing model for regular VoIP calling (wholesale or retail). Use the Flow model only if you specifically operate a callback business. The Flow model is designed for two-leg callback billing scenarios and introduces unnecessary complexity for standard operations. The VOS3000 manual (Section 2.4.2, Page 16) confirms that the Flow model is specifically “for callback business.”

Q7: Can an agent account modify another agent’s sub-accounts?

A: No. A fundamental security principle of the VOS3000 agent account system is that “Agent account can only manipulate its sub accounts” (VOS3000 Manual, Section 2.4.5, Page 25). Agent A cannot see, modify, or interact with Agent B’s sub-accounts. This isolation ensures that different resellers on the same platform operate independently and securely.

Q8: How do I configure gateway access for a VOS3000 agent account?

A: Gateway access requires three authorizations to be enabled: “Add/delete gateway,” “Modify gateway information,” and “Modify gateway capacity.” Enable these authorizations only for agents who need to manage their own SIP infrastructure. For most retail resellers, gateway management should remain with the system administrator. Only grant gateway authorizations to trusted wholesale or SIP trunk provider agents.

📚 Related Resources

Expand your VOS3000 knowledge with these related guides from our blog:

• 🛡️ VOS3000 Extended Firewall Configuration Guide — Protect your VOS3000 system with advanced firewall rules
• 🔄 Callee Rewrite Rule & Prefix Conversion Settings in VOS3000 — Master prefix manipulation for clients and vendors
• 📊 Vendor Billing & CDR Portal Report Generation in VOS3000 — Generate detailed billing reports from the CDR portal
• ⚡ Faster Support for VOS3000 — Easy Troubleshooting Guide — Quick troubleshooting tips for common VOS3000 issues
• 💰 VOS3000 License Version & Pricing Details — Complete pricing and licensing information
• 📞 Prepaid Vendor Call Routing in VOS3000 — Route calls only to vendors with positive balance
• 🔗 Allowing Specific Client for Specific Vendor in VOS3000 — Client-vendor mapping for retail call routing

For the official VOS3000 software, visit the VOS3000 Downloads Page.

📞 Get Expert VOS3000 Support

Need help setting up your VOS3000 agent account system or configuring reseller authorization management? Our team of VOS3000 experts is ready to assist you with:

• 🔧 Agent Account Setup: Complete configuration of your agent hierarchy and authorization structure
• 🔐 Security Hardening: Implement best-practice authorization controls and number section limitations
• 📊 Billing Configuration: Set up CTD billing models and rate cards for your agent network
• 🛡️ Fraud Prevention: Configure firewall rules and monitoring to protect your platform
• 🔄 Migration Support: Migrate existing accounts to a proper agent hierarchy

💬 Contact us on WhatsApp: +8801911119966

Whether you’re setting up your first VOS3000 agent account or managing a complex multi-level reseller network, we’re here to help. Don’t let configuration challenges slow down your business — reach out today!

📲 WhatsApp: +8801911119966

✅ RankMath SEO Checklist

📖 This guide is based on the VOS3000 User Manual V2.1.9.07. All page references and feature descriptions are sourced from the official documentation. For the latest software updates, visit vos3000.com/downloads.php.

Published on multahost.com/blog — Your trusted source for VOS3000 tutorials, configuration guides, and VoIP business insights. Need expert help? Contact us on WhatsApp at +8801911119966.

📞 Need Professional VOS3000 Setup Support?

For professional VOS3000 installations and deployment, VOS3000 Server Rental Solution:

📱 WhatsApp: +8801911119966
🌐 Website: www.vos3000.com
🌐 Blog: multahost.com/blog
📥 Downloads: VOS3000 Downloads