[cisco-voip] CUCM LDAP Integration
Fuermann, Jason
jason.f at shsu.edu
Thu Mar 17 11:44:47 EDT 2011
On 7.0.2, you can enable auth and not sync, and your users will never get marked for deletion. A caveat to that is you have to disable auth to add/remove users from end users. You can always create application users if you don’t want them to auth from ldap though
From: cisco-voip-bounces at puck.nether.net [mailto:cisco-voip-bounces at puck.nether.net] On Behalf Of Lelio Fulgenzi
Sent: Tuesday, March 15, 2011 2:24 PM
To: Ryan Schwab
Cc: cisco-voip at puck.nether.net
Subject: Re: [cisco-voip] CUCM LDAP Integration
I know I can test this, but I'm just wondering if you can enable LDAP authentication without LDAP synchronization. I'd like to be able to create local user accounts and choose between local password or LDAP password. This is something that many systems allow, just wondering if there is a workaround.
Sent from my iPhone
On Mar 15, 2011, at 1:30 PM, "Ryan Schwab" <schwaby81 at shaw.ca<mailto:schwaby81 at shaw.ca>> wrote:
Hi Tim,
Once LDAP integration is turned on in CUCM, it will “replace” your current end users. If the userID of your CUCM end user is an exact match of the LDAP userID, it will keep this user and associated settings in place. All other users will be marked for removal. I believe the “purge” period is every 24 hours.
Improved in CUCM 8x is LDAP filters which allows you to sync LDAP users based on defined criteria (ex: only users with ipPhone field populated).
I believe the CUCM SRND explains this the best. If you have a test environment, try it there first.
Hope that helps.
-Ryan Schwab
From: cisco-voip-bounces at puck.nether.net<mailto:cisco-voip-bounces at puck.nether.net> [mailto:cisco-voip-bounces at puck.nether.net] On Behalf Of H, Tim
Sent: March-15-11 11:20 AM
To: cisco-voip at puck.nether.net<mailto:cisco-voip at puck.nether.net>
Subject: [cisco-voip] CUCM LDAP Integration
All,
We're looking at changing our CUCM environment to include LDAP authentication. Does this mean all of our current users go away and it imports all users from AD? I'm specifically looking at problems we could potentially have with this. We're running CUCM 7.15 and UCCX 7.01.
Any help/documentation you all know if is appreciated.
Thanks,
Tim
_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net<mailto:cisco-voip at puck.nether.net>
https://puck.nether.net/mailman/listinfo/cisco-voip
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20110317/3cbf5927/attachment.html>
More information about the cisco-voip
mailing list