[cisco-voip] Excluding Users from Corporate Directory on 6.1

Ryan Ratliff rratliff at cisco.com
Fri Mar 28 13:03:19 EDT 2008 

That is an alternative to putting your users into separate OUs like  
Paul referenced.  It looks like what Nick wants is to have users in  
the CCMAdmin End Users directory, but not have them show in the  
Corporate Directory on the phones.  This will require a custom  
corporate directory that can essentially do the same filtering based  
on whatever ldap attribute they choose.

-Ryan

On Mar 28, 2008, at 1:07 PM, Matthew J. Hughes wrote:

I had asked this question previously on the forum,  Wes had sent me a  
Cisco doc regarding LDAP filtering on CCM 5 and 6 (I would include  
the doc but it said something about confidential and I dont want to  
get in trouble but you can ask Wes about it).  Basically there is a  
hidden field in CCM 5-6 SQL where u can enter a ldap filter string.   
I made mine so that only users with a IPPhone Field are included.   
You have to edit the SQL database directly so I used this AXL  
command. just replace the filter with whatever you would like to use.

<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/ 
envelope/">
    <SOAP-ENV:Body>
       <axlapi:executeSQLUpdate sequence="1"  
xsi:schemaLocation="http://www.cisco.com/AXL/API/1.0 axlsoap.xsd"  
xmlns:axlapi="http://www.cisco.com/AXL/API/1.0" xmlns:axl="http:// 
www.cisco.com/AXL/1.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema- 
instance">
          <sql>UPDATE ldapfilter SET filter= '(&amp;(objectclass=user) 
(!(objectclass=Computer)(ipPhone=*))(!(UserAccountControl: 
1.2.840.113556.1.4.803:=2)))' WHERE tkldapserver=1</sql>
       </axlapi:executeSQLUpdate>
    </SOAP-ENV:Body>
</SOAP-ENV:Envelope>



On Fri, Mar 28, 2008 at 6:51 AM, Ryan Ratliff <rratliff at cisco.com>  
wrote:
I believe the only way you can do this is via a custom corporate  
directory URL.   Even in 4.x the ciscoprivateuser attribute would  
prevent the user from showing up in CCMUser/Admin as well.   All  
users that show up as End Users in CCMAdmin will show in the default  
corporate directory.

-Ryan

On Mar 28, 2008, at 7:56 AM, Nick wrote:
But I want the users to sync and be in the CM User list as I need to  
use them for extension mobility profiles, I just do not want them to  
display in the corporate directory.

On 28/03/2008, Paul Dillon <pdillon at gmail.com> wrote:
Hi Nick
I have not looked at this but can it be done using AD OUs - basically  
have users you want to see in the OU that LDAP syncs too and all  
other users in another OU
Thanks
Paul


On 3/28/08, Nick <csvoip at googlemail.com> wrote:
I have CUCM 6.1 and AD in LDAP sync and I would like to exclude some  
of the users fromm being shown in the Corporate directory, I know  
this could be done on previous versions 4.X but can't seem to find it  
on 6.1, does anyone know if this can still be done.
_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip



_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip


_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip


_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://puck.nether.net/pipermail/cisco-voip/attachments/20080328/e7c3c08c/attachment.html

More information about the cisco-voip mailing list