[cisco-voip] Voicemail failing over MRA when using SSO

Brian Meade bmeade90 at vt.edu
Mon Jan 18 17:01:18 EST 2016 

Sounds like this bug- https://tools.cisco.com/bugsearch/bug/CSCux52984

On Mon, Jan 18, 2016 at 4:51 PM, Hank Keleher (AM) <
hank.keleher at dimensiondata.com> wrote:

> I’ve searched far and wide for an answer to this and so far only found one
> Cisco supportforums post with no answer, hopefully someone here has
> experienced this and can provide some direction.
>
> I currently have 10.5.2 CUCM, CUC and IM&P configured with 8.7 Expressway
> with MRA and 11.1.2 Windows Jabber. All are configured with SSO against
> ADFS and this works across the board, except the voicemail account when
> logging in externally through the Expressway with an SSO enabled account.
> Under Connection Status is shows the voicemail is not connected. Everything
> else is fine, phone services as well as IM and presence.
>
> However, the client works fine on the internal network as well if I use a
> CUCM/CUC local account on an external Jabber client I’m able to provide my
> CUC credentials and voicemail works, this at least confirms to me that the
> Expressway is configured to allow Unity Connection to work externally
> (though why didn’t it use the same login for phone service and IM like it
> does internally, I’m not sure?) We’re using FQDN with all devices and
> services and everything is working with the exception of the Unity
> Connection on external Jabber clients (I’m seeing the issue on Windows, Mac
> and iPhone external clients.)
>
> On the Expressway-C under SSO statistics I see that all Unity Connection
> Server Proxy Authorizations failed and there are 0 OAuth tokens (whereas
> there are many for Unified CM.) Nothing is really standing out in the logs
> as far as I can see either. I have the Unity Connection server configured
> under Unified Communications on the Expressway-C with TLS verify on and
> it’s connected and in the Auto-configured allow list with FQDN and IP
> address. Just to make sure I even added the server to the HTTP server allow
> list manually even though that shouldn’t be necessary on this version.
>
> Any thoughts or ideas?
>
> Thanks!
> Hank
>
> _______________________________________________
> cisco-voip mailing list
> cisco-voip at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-voip
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20160118/d979f690/attachment.html>

More information about the cisco-voip mailing list