[cisco-voip] CUCM requirements for AD account import - anything else other than SN=* (non-empty) ?
Lelio Fulgenzi
lelio at uoguelph.ca
Thu Jan 30 17:51:22 EST 2020
We can’t filter on anything telephone number based. Sounds silly, but the information in the directory doesn’t always jive with what someone wants, extension wise.
That being said, I took the CUCM docs to heart and made sure to add the default filter they use but don’t show….
(&(objectclass=user)(!(objectclass=Computer))(!(UserAccountControl:1.2.840.113556.1.4.803:=2)))
And then I added my “exclusion” group.
My testing is being done on my test server, which isn’t complaining I just found out, like my production.
Will have to look a bit deeper.
In the mean time, looking at test unity server, which _was_ complaining. 😊
From: Charles Goldsmith <w at woka.us>
Sent: Thursday, January 30, 2020 5:41 PM
To: Lelio Fulgenzi <lelio at uoguelph.ca>
Cc: voyp list, cisco-voip (cisco-voip at puck.nether.net) <cisco-voip at puck.nether.net>
Subject: Re: [cisco-voip] CUCM requirements for AD account import - anything else other than SN=* (non-empty) ?
This is what I recommend to customers, users, not pc's and the ipPhone field is populated.
(&(objectclass=user)(!(objectclass=Computer))(ipPhone=*))
On Thu, Jan 30, 2020 at 3:34 PM Lelio Fulgenzi <lelio at uoguelph.ca<mailto:lelio at uoguelph.ca>> wrote:
OK - I'm trying to reconcile accounts being imported into CUCM before I modify the filter we're using.
I've used the base filter suggested, plus I've added the (sn=*) to ensure we get only accounts with non-empty last names.
However, my reconciliation is off by 1 (including taking into account inactive LDAP accounts).
CUCM: 86,636
LDAP Browser: 86,637
I could just write it off as an anomaly, but I've sync'ed multiple times and ran the LDAP search multiple times, and I'm pretty sure no one is making changes.
Anyone aware of any other criteria CUCM puts on to the import process?
_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net<mailto:cisco-voip at puck.nether.net>
https://puck.nether.net/mailman/listinfo/cisco-voip
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20200130/06308788/attachment.htm>
More information about the cisco-voip
mailing list