[cisco-voip] Unity Connections loses LDAP Auth

Jason Aarons (US) jason.aarons at us.didata.com
Wed Mar 3 14:15:42 EST 2010 

If you have packet captures showing that, sounds like a bug for Cisco
TAC. 

 

What version Unity Connection? Tried turning up any kinds of trace for
DirSync (or whatever the LDAP service is called in Connection 7)?  

 

 

From: cisco-voip-bounces at puck.nether.net
[mailto:cisco-voip-bounces at puck.nether.net] On Behalf Of Scott Irey
Sent: Wednesday, March 03, 2010 1:17 PM
To: cisco-voip at puck.nether.net
Subject: [cisco-voip] Unity Connections loses LDAP Auth

 

Hello,


We are in the process of bringing up UC to replace our aging voice mail
systems. Moving along fine until yesterday our LDAP auth stopped working
for administration and PCA.

 

We do not to any ldap sync, we just import everyones ldap uid as there
alias and also put the ldap uid in the LdapCcmUserId field. Yesterday,
the uid we use to bind to the LDAP database expired (or something, not
sure exactly what happened from the LDAP team, password may have been
forced to reset something like that). After the account for binding was
fixed however, we still cannot do ldap authentication.

 

So far we tried a new ldap account to bind, restarted the dirsync
service a few times, and even rebooted the whole server. This morning I
tried disabled all LDAP configs, reenabling and then re-importing my
user account with the LdapCcmUserId field. Still no luck.

 

When doing a packet capture, we see the LDAP bind request hit the LDAP
server with the right credentials, and LDAP server sends a bind success.
UC then sends an LDAP unbind request and no more ldap packets are sent.

 

Anyone seen this before?

 

Thanks for the help.

 

 

Scott Irey

Network & Telecom Systems Engineer

Oakland University

Office: 248.370.2808

Mobile: 248.505.9827

 




-----------------------------------------
Disclaimer:

This e-mail communication and any attachments may contain
confidential and privileged information and is for use by the
designated addressee(s) named above only.  If you are not the
intended addressee, you are hereby notified that you have received
this communication in error and that any use or reproduction of
this email or its contents is strictly prohibited and may be
unlawful.  If you have received this communication in error, please
notify us immediately by replying to this message and deleting it
from your computer. Thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20100303/3f351f95/attachment.html>

More information about the cisco-voip mailing list