Cisco Call Manager intergration with Active Directory

Similar Messages

• Call Manager 9.1 Active Directory Question(s)

  Hello All!
  Firstly let me establish that I am not an administrator of our VoIP system however I do manage the Server side of our network.  We are in the process of planning an Active Directory upgrade and I'm having some difficulty getting a question answered about the requirements for  Call Manager.  We are at version 9.1 of Call Manager currently with our Active Directory version at 2003 R2.  We are planning to upgrade to Active Directory version 2008 R2 (functional level) however we would like to use Server 2012 R2 as the OS for our AD servers.  From a Microsoft standpoint this is a valid solution, it's built into Active Directory that you can run at different "functional levels" of AD on higher server operating systems.  Any Call Manager applications that require a Windows operating system would run on whatever works for that (2003 or 2008 etc).  Can we use Server 2012 R2 as the Domain Controller operating system while running at 2008 R2 functional level for Active Directory and still retain our Cisco support?

  Hi Allen,
  This is from Cisco site (you already may have seen this), though it talk about the directory services but it is specifically mentioned 2008. 2012 may work and specially as you are saying with functional level set to 2008 shouldn't have any issues. But Cisco have not tested that and you may get into support issues (if any).
  Its completely tested and supported with CUCM 10.X
  Version 9:
  http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/admin/9_0_1/ccmsys/CUCM_BK_CD2F83FA_00_cucm-system-guide-90/CUCM_BK_CD2F83FA_00_system-guide_chapter_010011.html#CUCM_TK_C4E65231_00
  Configure LDAP directory
  If you want to do so, you can add users from your corporate directory to the Cisco Unified Communications Manager database by synchronizing the user data to the database. Cisco Unified Communications Manager allows synchronization from the following directories to the database:
  Microsoft Active Directory 2000
  Microsoft Active Directory 2003
  Microsoft Active Directory 2008
  Microsoft Active Directory Application Mode 2003
  Microsoft Lightweight Directory Services 2008
  iPlanet Directory Server 5.1
  Sun ONE Directory Server 5.2
  Sun ONE Directory Server 6.x
  OpenLDAP 2.3.39
  OpenLDAP 2.4
  Terry

• Cisco call manager integration with mediant

  How can we add and integrate mediant with cisco call manager ?
  Can you have doc for this kind of setup ?

  Hi Sachin,
  We do run a hybrid Callmanager to Nortel Meridian setup (works well).
  Here are some great docs;
  Cisco Unified CallManager
  Case Study: Nortel 61C PBX to Cisco IP Telephony Migration
  From this good doc;
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_white_paper09186a00801115e0.shtml
  Nortel Meridian PBX and Cisco CallManager Integration
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_configuration_example09186a008011888c.shtml
  Cisco Unified CallManager System Guide, Release 4.2(1)
  Cisco DPA Integration
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_administration_guide_chapter09186a008055cd53.html
  Hope this helps! Let me know if you need additional info.
  Rob

• Cisco ISE Process Flow with Active Directory

  Hi guys,
  Today I did a lab and see this note at Authentication Policy Interface. This note is:
  Note: For authentications using PEAP, LEAP, EAP-FAST or RADIUS MSCHAP it is not possible to continue processing when authentication fails or user is not found. If continue option is selected in these cases, requests will be rejected.
  Then I thought that the best way to configure authetication policy for Flex Auth: Dot1x (with Active Directory) > MAB (Internal Endpoint) > CWA (Guest and other user) will be using EAP-TLS authentication protocol.
  Is this possible using another protocol instead of EAP-TLS (which is required client certificate has already been installed)? Would you mind helping me to reslove the problem? And the network authentication method at end user side will be?
  Any help will be much appreciated.

  Please refer the Supported Authentication Protocols ( including PEAP )  , database and authentication types from below
  http://www.cisco.com/c/en/us/td/docs/security/ise/1-2/user_guide/ise_user_guide/ise_auth_pol.html#pgfId-1266680

• Managed users with Active Directory?

  Hi guys
  I was wondering if any of you can help me out. I'm looking to get a OS X Server 10.4 to act as a managed user server, with all the pros of Open Directory (ie Finder restrictions etc) and user home directories on the Xserve's HD, but to authenticate through a Windows 2003 Active Directory Server.
  I have been reading a number of sites and there seams to be two ways to do it.
  1) Bind the Xserve and the client Macs to the Active Directory and then on the PC server specify the home folders as a share point on the Xserve. Ie \\Xserve\Users\Tom
  This way the Xserve is basically a file server.
  2) And I'm cutting this story short because I've only briefly read this one. But you can set the Xserve as an Open Directory master, some how import the users and then remove the directory master roll.
  I really need to be able to have the usernames and passwords live from the Windows Server due to passwords being changed every 30 days blah blah blah so I guess point 2 is out of the question.
  To be honest a yay or nay to the above would be a good start, could obviously save a lot of wasted time, but if anyone can recommend me a website or a pdf that will walk me through it.
  I've managed to get my laptop to authenticate to AD but cant get the home directories to work. Every time I log in with a user account it creates it locally on my HD. I do not have "Force local home directory" checked. I guess I need to configure LDAP to the AD server as well? I gave it a go an managed to get Address Book pulling users and emails from the AD sever. I then preformed a lookupd lookup on a user bob and found that the home directory was set to /Users/bob even though on my AD server I've set it to \\Xserve\Users\bob is this something I'm doing wrong with LDAP? If thats all it is I'll be able to get point 1 above working and it will all be good.
  I hope I've made this clear enough for someone to be able to help me.
  Thanks in advance for any help you might be able to give me.
  Tom
  1.25GHz PowerBook G4   Mac OS X (10.4.4)  

  With an OD master you could manage your clients at the group and computer list level.
  So when you setup the user's profile in AD, you mapped a network drive and provided the UNC path \\Xserver\Users\bob. You did bind the OD Master with the name Xserve? Also, by default it will use smb to connect, which you can change to afp instead in the AD plugin. smb will not create the home folder for you. You could try to create the home folder yourself in advance. (sudo createhomedir -a may do the trick)
  For troubleshooting purposes, you could create a share on the AD server and adjust the user's profile to point to it instead of the OD Master. Try and login and see what you get.

• Fingerprint intergrated with Active Directory

   Does Server 2008 have any biometric support included for domain login?  All I can find on the web is digitalpersona.  I would feel more comfortable with integrated support.  One less 3rd party software to update and support.  Without AD support, a fingerprint scanner is not very useful.

  You can setup domain accounts locally with a fingerprint reader. But the fingerprints themselves as i said will be stored and associated with the domain account locally.
  The reason we haven't seen support for biometric data in AD is a matter of look up time.
  When a username and password is used to authenticate to AD the username is sent in plain text, and the password is sent as a hash, the server goes and pulls the record of the userID and then compares the two hashes.
  If only a fingerprint were used to login we would likely hash the fingerprint's image, or send an encrypted binary of the fingerprint.  The server would then need to compare this data against every user's fingerprint in your organization. Depending
  on the size of your workstations AD database, you this could very form a few seconds to a few minuets per transaction multiply this times however many users in your oginzation and you can see why Microsoft has not yet introduced this functionality.
  Microsoft Certified Technology Specialist Configuring Windows 7

• Hi Team, I wuold like to know if you have any app to make Firefox OS working with cisco Call Manager 10.5. Something like Cisco Jabber for Android or iOS.

  I'm interesting on buying a Firefox Smart Phone, but
  I would like to know if are any app to install on Firefox OS smart phone in order to work with cisco call manager 10.5.
  Something like Cisco Jabber for Android o iOS.
  Thanks,

  Hi Itech,
  If Cisco Jabber has a webapp, or mobile version of their website available, you should technically be able to access it through Firefox OS.
  You may also search Firefox Marketplace for an alternative solution:
  * [https://marketplace.firefox.com/]
  - Ralph

• Is it possible to integrate Nokia E62 with Cisco Call Manager 4.x?

  The Nokia E-61 can be integrated with Cisco Call manager 4.x using a Nokia Call Connect 1.0 client.
  1.Is it possible to do the same with Nokia E62.If it can be done,what would be the requirements?
  2.Is Nokia E-62 PDA a Cisco Compatible Extension device?

  Thanks a lot for the prompt reply.You are right in saying that nokia and cisco are increasing the number of models supported.Infact the E65 has already joined the club.But my point of interest is the nokia E62 in particular.This Nokia E62 device
  1) does not support WLAN interface(while E61,E65 does).
  2) It is not Cisco Commpatible extension device.(I did not find E62 in the list of Cisco Compatible extensions.chk out the attachments for more info).
  3)It is not compatible with Nokia Intellisync CAll Connect 1.0(while E61 and E65 are compatible.chk out the attachment for more info).
  I found this rather weird and i wondered if Nokia E62 can be integrated with Cisco Call manager ,especially a device which is not Cisco compatible.The only possibility i can see from your answer is that the Nokia E62 might not be SIP enabled(correct me if i am wrong here!)
  My objective is to send a message from a CUAE script to a nokia E62 device.Please excuse me if my posting is not in the right place.i would be highly grateful to you if you could give me pointers to an appropiate location where i can get my queries answered.

• Can't log in to Profile Manager or My Devices with Active Directory logins

  I have an OSX Lion 10.7.4 Server set up with Profile Manager and it is joined to AD.
  I am able to see AD groups in the Profile Manager groups section.
  I can also see and add AD users and groups using the server app.
  I have enabled the "Can Enable Remote Management" check box for Domain Users through Profile Manager. I have also added Domain Admins to the Workgroup group in the Server app. I'm not sure that I want or need either of these options, but they were suggestions to try.
  I am not able to log on to the Profile Manager or My Devices pages with AD logins.
  I found these directions about nested groups in Workgroup Manager http://krypted.com/iphone/integrating-mac-os-x-lion-servers-profile-manager-with -active-directory/ but I don't have a com.apple.access_devicemanagement local group or any groups like are shown in the picture.
  Any ideas what I'm missing?
  Cheers,
  Ian

  I found the two pieces I was missing:
  1) Install the Lion Server Admin Tools
  Launch the Server Admin App
  Click on the server name in the left pane
  Click on the Access button in the upper part of the window
  Click on Profile Manager
  Either manually add specific groups to the list or if you're feeling brave choose the "Allow all users and groups" radio button
  2) Run the command line steps on this page to change the authentication to plain text to support AD authentication:
  http://support.apple.com/kb/HT4837
  Voila!

• Autheticating useing Cisco ACS 4.2 integrated with Active Directory 2003

  How do i check that users are Autheticated useing Cisco ACS 4.2 integrated with Active Directory 2003, any one help me in this thanks

  You can't actually see the user's membership from ACS. All you can do, create group-mapping under external database >> group mapping section. This would give you an option to map external (AD) group with an Internal group.The group memberrship need to be modified under Active Directory.
  Once user is succussfully authenticated and learned as a dynamic user in ACS user setup database, it would be mapped with an ACS internal group based on group mapping we did.
  Let me know if you have any doubts.
  Regards,
  Jatin

• Cisco ACS 4.2 integration with Active Directory

  Hello,
  I´m new in the administration of ACS, we have recently implemented on server ACS version 4.2
  for manager all users authorization for our Network.
  We are in one environement which have an Active Directory, group and users.
  Now, i´m just able to creat a new user in ACS and work with on the Client SWITCH, what i need to do, is to integrate my ACS 4.2 with Active Directory.
  for work with the user and Group that a register in my AD.
  Someon can help me please?

  You can't actually see the user's membership from ACS. All you can do, create group-mapping under external database >> group mapping section. This would give you an option to map external (AD) group with an Internal group.The group memberrship need to be modified under Active Directory.
  Once user is succussfully authenticated and learned as a dynamic user in ACS user setup database, it would be mapped with an ACS internal group based on group mapping we did.
  Let me know if you have any doubts.
  Regards,
  Jatin

• Integration with Cisco Call Manager?

  We have Cisco VOIP phones and we would like to continue managing calls with Cisco Call Manager.  We currently have voicemail on Cisco Unity.  We currently have Exchange 2010, but plan to start using Exchange 2013 soon.
  However, we would like to migrate voicemail service from Cisco Unity to Exchange Unified Messaging and also want to take advantage of most of the voicemail-related features of UM such as voice to text sent to email, voice mail waiting indicator light on
  the phones and sending voice mail audio attachments to email. 
  Is Exchange 2013 Unified Messaging compatible Cisco phones that are managed by Cisco Call Manager?
  We have 500 users and 2 Exchange 2010 servers (1 CAS and 1 Mailbox Server).  We now have a few Exchange 2013 licenses available in addition to our existing 2010 licenses that are already used on our existing 2 servers.  Can we keep the 2 existing
  Exchange 2010 servers as they are and create a new Unified Messaging server on  Exchange 2013 in the same environment or do we need to upgrade all the 2010 servers to 2013 if we use Unified Messaging on 2013?

  Hi Sachin,
  We do run a hybrid Callmanager to Nortel Meridian setup (works well).
  Here are some great docs;
  Cisco Unified CallManager
  Case Study: Nortel 61C PBX to Cisco IP Telephony Migration
  From this good doc;
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_white_paper09186a00801115e0.shtml
  Nortel Meridian PBX and Cisco CallManager Integration
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_configuration_example09186a008011888c.shtml
  Cisco Unified CallManager System Guide, Release 4.2(1)
  Cisco DPA Integration
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_administration_guide_chapter09186a008055cd53.html
  Hope this helps! Let me know if you need additional info.
  Rob

• Cisco Call Manager and MGCP Question

  Hello,
  I appreciate if somebody can help.
  Scenario:
  Site 1 PSTN E1----VG----Call Manager----VG--- PABX---Site 2 PSTN1 E1
  I have configured a dialing pattern on Cisco call manager 6.xxxxxx to Send to VG on Site1
  Both VG routers are using MGCP with call Manager.
  The problem if from Site 2 tries to call 6xxxxxx the call manager is not routing the call to the VG in site 1.
  I did debug ccapi inout and on Site 2 VG the call response was the number unassigned. This means that the call Manager is searching the directory for the destination but it is not searching the route patterns.
  Any ideas to override this and ask the call manager to check it's destination pattern?
  Thanks,

  Problem solved. The VG in Site 2 was in a CSS that is not allowed to dial PSTN.
  Regards,

• Cisco Call Manager replication issue

  Hello
  We are running a cluster of 3 servers with Cisco Call Manager version 6
  I have noticed that the replication status is 3 on all servers and from the CM Database Status I can see  queue of updates are stuck
  I have restarted Pub and one Sub but the status is still 3 and queue status is still the same
  Is there anything I can do to make it work?
  Thank you 

  Thank you,
  I will try them tomorrow, but I thought restarting the servers will also reset the replication
  Btw, there was a time difference on the servers due to NTP failure and I have just noticed that Pub can not see one of the Subs, the replication status is 0 and
  g_cucs01_ccm6_1_2_1000_13 2 Active Connected 0 Sep 15 10:21:37
  g_cucs02_ccm6_1_2_1000_13 11 Active Connected 0 Sep 15 10:35:19
  g_cucs03_ccm6_1_2_1000_13 19 Active Dropped 92939 Aug 20 07:51:14
  g_cucs08_ccm6_1_2_1000_13 18 Active Local 0

• Cisco Call Manager Question

  Hi,
  I have a quick question on the Cisco Call Manger.  Is it possible to have a Cisco call manager store a list of contacts, and then transfer all the list to any phone that registers to it?  Furthermore, if this is possible, will the contacts be stored in the phones volatile or nonvolatile memory?
  Thanks!
  Billy

  in call manager the directory list can be search by ip phones
  the rource is from the end users page/settings
  these details are either entered manually by system admin
  or can be automatic when you integrate with LDAP like Microsoft AD
  HTH