[cisco-voip] CM 4.3 user auth problem with AD integration

Ryan Ratliff rratliff at cisco.com
Thu Feb 19 11:24:07 EST 2009


Any CTI errors in the app log from when it happens?  If so what is  
the specific error code?

Did you try getting a netmon capture from the CCM server during the  
time of the errors to look at the ldap traffic?

-Ryan

On Feb 19, 2009, at 10:00 AM, Andrius Kislas wrote:

Hi,

I have a few problems in one systems that has similar symptoms. Maybe  
some of you have faced this before.

I have CallManager 4.3 cluster with 2 nodes. It is integrated with  
Microsoft Active Directory. A CheckPoint firewall stands between  
them. Most of the time CallManager works just fine. But sometimes a  
bunch of problems appears:
- CallBack stops working. In CTI logs I can see that CM says "Fail"  
when CCMSysUser tries to open CTI provider. This failure keeps on  
repeating.
- I get "bad user or password" in my CTI JTAPI software when it tries  
to open CTI provider.
- When I go to CM users page, I have to wait very long until I get a  
list of users.

If I look at Windows Domain Controller Security Event logs, I see  
only successful authentications, no failures. It seems authentication  
breaks somewhere before Win DC. If CTI software works without  
restart, it doesn't break. So the problem is somewhat about  
authentication.

The fix for the problem is to restart CTI service.

Has anyone seen such behavior? What can be wrong?

Andrius
_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip



More information about the cisco-voip mailing list