<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML dir=ltr><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2900.2963" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Thanks Jim. Looks like there might be something
there that Tim can use:
http://www.ciscounitytools.com/Documents/programaticAdmin.doc</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV>
<H3 style="MARGIN: 12pt 0in 3pt"><A name=_Toc55564699></A><A
name=_Toc35995594></A><A name=_Toc35994990></A><A name=_Toc35994915><SPAN
style="mso-bookmark: _Toc35994990"><SPAN
style="mso-bookmark: _Toc35995594"><SPAN
style="mso-bookmark: _Toc55564699"><SPAN lang=EN-US><FONT face=Arial>Update
subscriber’s password</FONT></SPAN></SPAN></SPAN></SPAN></A></H3>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US>Setting the
password is easy going through the stored procedure since it will take care of
hashing your raw phone password into an MD5 string for you on the back end.<SPAN
style="mso-spacerun: yes"> </SPAN>MD5 strings should always be exactly 32
characters here.<SPAN style="mso-spacerun: yes"> </SPAN>Since phone
passwords can only be 20 digits in length, the stored procedure assumes that if
the string is 32 characters long it’s already been hashed into an MD5 string and
will pass it through directly.<SPAN style="mso-spacerun: yes">
</SPAN>Otherwise it’ll hash it for you on the back end so you can simply pass
through the raw digits for the phone password you want to set and it’ll take
care of it for you.<SPAN style="mso-spacerun: yes"> </SPAN>If you’re
paranoid you can also hash the phone password into it’s MD5 string and then pass
that into the stored procedure instead.<SPAN style="mso-spacerun: yes">
</SPAN>It’ll handle it either way.</SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><?xml:namespace
prefix = o ns = "urn:schemas-microsoft-com:office:office"
/><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US>When setting the
password for a subscriber it’s up to you to be sure it complies with the
password policy for the site.<SPAN style="mso-spacerun: yes"> </SPAN>If
you pass in a blank string for the password, for instance, the phone password
will be cleared.<SPAN style="mso-spacerun: yes"> </SPAN>You can check the
phone password policies in the PwPolicy table in UnityDB.<SPAN
style="mso-spacerun: yes"> </SPAN>The stored procedure does not do any
enforcement of the site’s policy, so make sure you’re careful here.</SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN
lang=EN-US><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><SPAN
style="mso-spacerun: yes"> </SPAN>oCommand.CommandText =
"sp_ModifySubscriber"</SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN
lang=EN-US><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><SPAN
style="mso-spacerun: yes">
</SPAN>oCommand.Parameters.Item("@SubscriberObjectID") =
oCommand.CreateParameter("SubscriberObjectID", adGUID, adParamInput, ,
strSubscriberObjectID)</SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN
lang=EN-US><o:p> </o:p></SPAN></P>
<P class=MsoBodyText style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><FONT
color=#008000><SPAN style="mso-spacerun: yes"> </SPAN>'The
phone password is passed in as clear text in this example - it gets crunched and
encrypted by the SP during the subscriber update process.<SPAN
style="mso-spacerun: yes"> </SPAN>You can pass in a “pre hashed” MD5
string yourself – if the string is exactly 32 characters long the stored proc
will pass it through “as is”.</FONT></SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><SPAN
style="mso-spacerun: yes">
</SPAN>oCommand.Parameters.Item("@PWDTMF") = oCommand.CreateParameter("PWDTMF",
adVarChar, adParamInput, , txtPhonePassword.Text)</SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><SPAN
style="mso-spacerun: yes"> </SPAN></SPAN></P>
<P class=MsoBodyText style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><FONT
color=#008000>‘Passwords are not written through to the directory, no need to
synch.</FONT></SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><SPAN
style="mso-spacerun: yes">
</SPAN>oCommand.Parameters.Item("@DirectorySync") =
oCommand.CreateParameter("DirectorySync", adInteger, adParamInput, ,
0)</SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><SPAN
style="mso-spacerun: yes"> </SPAN></SPAN></P>
<P class=MsoBodyText style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><FONT
color=#008000><SPAN style="mso-spacerun: yes"> </SPAN>'Let the
stored procedure call rip.</FONT></SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US><SPAN
style="mso-spacerun: yes"> </SPAN>oCommand.Execute</SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN
lang=EN-US><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN lang=EN-US>Since phone
passwords are not pushed into the directory there’s no need to issue a
synchronization request for this.<SPAN style="mso-spacerun: yes">
</SPAN>You’re done.</SPAN></P></DIV>
<BLOCKQUOTE dir=ltr
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=jim@tgasolutions.com href="mailto:jim@tgasolutions.com">Jim
McBurnett</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A
title=tim.reimers@asheville.k12.nc.us
href="mailto:tim.reimers@asheville.k12.nc.us">Tim Reimers</A> ; <A
title=lelio@uoguelph.ca href="mailto:lelio@uoguelph.ca">Lelio Fulgenzi</A> ;
<A title=cisco-voip@puck.nether.net
href="mailto:cisco-voip@puck.nether.net">cisco-voip@puck.nether.net</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Cc:</B> <A
title=alan.surrette@asheville.k12.nc.us
href="mailto:alan.surrette@asheville.k12.nc.us">Alan Surrette</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Saturday, September 16, 2006 10:42
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> RE: [cisco-voip] Reset Unity
mailbox password..</DIV>
<DIV><BR></DIV>
<DIV dir=ltr align=left><SPAN class=513404102-17092006><FONT face=Arial
color=#0000ff size=2>Take a look over at <A
href="http://www.ciscounitytools.com">www.ciscounitytools.com</A></FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=513404102-17092006><FONT face=Arial
color=#0000ff size=2></FONT></SPAN> </DIV>
<DIV dir=ltr align=left><SPAN class=513404102-17092006><FONT face=Arial
color=#0000ff size=2>There are some architecture notes
there...</FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=513404102-17092006><FONT face=Arial
color=#0000ff size=2></FONT></SPAN> </DIV>
<DIV dir=ltr align=left><SPAN class=513404102-17092006><FONT face=Arial
color=#0000ff size=2>J</FONT></SPAN></DIV><BR>
<DIV class=OutlookMessageHeader lang=en-us dir=ltr align=left>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> <A
href="mailto:cisco-voip-bounces@puck.nether.net">cisco-voip-bounces@puck.nether.net</A>
[mailto:cisco-voip-bounces@puck.nether.net] <B>On Behalf Of </B>Tim
Reimers<BR><B>Sent:</B> Saturday, September 16, 2006 9:19 PM<BR><B>To:</B>
Lelio Fulgenzi; <A
href="mailto:cisco-voip@puck.nether.net">cisco-voip@puck.nether.net</A><BR><B>Cc:</B>
Alan Surrette<BR><B>Subject:</B> Re: [cisco-voip] Reset Unity mailbox
password..<BR></FONT><BR></DIV>
<DIV></DIV>
<DIV id=idOWAReplyText89799 dir=ltr>
<DIV dir=ltr><FONT face=Arial color=#000000 size=2>You know, now that I
think about it--- hmm...</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>I'll have to check around in AD on Unity
and see where they've embedded the password in some AD field-- I'm betting
that the mailbox password is in there somewhere..</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>We have some internal experience in
scripting AD for our main domain --- if it's there in AD in some schema
extended field... hmmm..</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>time to break out that LDAP browser that
someone posted a link to - I did manage to get that to connect to Unity's AD,
though not our data AD or the CCM DCDirectory..</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV></DIV>
<DIV dir=ltr><BR>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> Lelio Fulgenzi
[mailto:lelio@uoguelph.ca]<BR><B>Sent:</B> Sat 9/16/2006 8:18 PM<BR><B>To:</B>
Tim Reimers; cisco-voip@puck.nether.net<BR><B>Cc:</B> Alan
Surrette<BR><B>Subject:</B> Re: [cisco-voip] Reset Unity mailbox
password..<BR></FONT><BR></DIV>
<DIV dir=ltr>
<DIV><FONT face=Arial size=2>I have not seen anything like this. Although it
would make for a great utility, say send their reset password to their email
address. I cannot find any reference to an API like SOAP for unity, that would
have helped immensely. You can try posting in the Cisco forums, I'm pretty
sure Jeff Lindborgh reads that. Jeff was the primary developer for Unity and I
believe he still is.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>If your users have the domain password available
to them, check out the PCA login page. It's a little different than the web/sa
pages and might fit your needs.</FONT></DIV>
<DIV> </DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV style="BACKGROUND: #e4e4e4; FONT: 10pt arial"><B>From:</B> <A
title=tim.reimers@asheville.k12.nc.us
href="mailto:tim.reimers@asheville.k12.nc.us">Tim Reimers</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=cisco-voip@puck.nether.net
href="mailto:cisco-voip@puck.nether.net">cisco-voip@puck.nether.net</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>Cc:</B> <A
title=alan.surrette@asheville.k12.nc.us
href="mailto:alan.surrette@asheville.k12.nc.us">Alan Surrette</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Saturday, September 16, 2006
12:08 PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> [cisco-voip] Reset Unity
mailbox password..</DIV>
<DIV><BR></DIV>
<DIV><FONT face=Arial color=#000000 size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>hello everyone--</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I'm looking for a way to allow a subscribers
Unity mailbox password to be reset in a way OTHER than through the Unity
webpages (and TermServ to Unity)</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I really really need to limit the access of
people to full Unity to just a few..</FONT></DIV>
<DIV><FONT face=Arial size=2>.. but at the same time, those few of us with
full access CANNOT keep up with the requests for resetting of passwords. (I
know, you'd think that's a user education thing..)</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>So -- I'm hoping for something like Greetings
Administrator to have rights to reset passwords on any mailbox -- similar to
how the person using GA can select any call handler and work with
it..</FONT></DIV>
<DIV><FONT face=Arial size=2>I'm hoping there's a level of access I can
grant to a additional staff members at remote sites just to be able to
clear and reset a password using their phone and something like Greetings
Administrator?</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>If that's not clear, just email me and I'll try
to confuse you some more... ;-)</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>thanks, Tim</FONT></DIV>
<P>
<HR>
<P></P>_______________________________________________<BR>cisco-voip mailing
list<BR>cisco-voip@puck.nether.net<BR>https://puck.nether.net/mailman/listinfo/cisco-voip<BR></BLOCKQUOTE></DIV></BLOCKQUOTE></BODY></HTML>