Corporate LDAP vs. Call Manager LDAP
Hello
I've been trying to get to a conclusion about this.
My company uses the Call Manager LDAP directory, but now we will upgrade the Call Managers (from 3.3 to version 4.1).
What benefits do we have if we use the Call Manager with the corporate directory (Active Directory) instead of the built-in?
Take a look at the following post.
http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Unified%20Communications%20and%20Video&topic=IP%20Telephony&CommCmd=MB%3Fcmd%3Ddisplay_location%26location%3D.1ddc519e
Hope this helps. If so, please rate the post.
Brandon
Similar Messages
-
Call Manager 9.1 Active Directory Question(s)
Hello All!
Firstly let me establish that I am not an administrator of our VoIP system however I do manage the Server side of our network. We are in the process of planning an Active Directory upgrade and I'm having some difficulty getting a question answered about the requirements for Call Manager. We are at version 9.1 of Call Manager currently with our Active Directory version at 2003 R2. We are planning to upgrade to Active Directory version 2008 R2 (functional level) however we would like to use Server 2012 R2 as the OS for our AD servers. From a Microsoft standpoint this is a valid solution, it's built into Active Directory that you can run at different "functional levels" of AD on higher server operating systems. Any Call Manager applications that require a Windows operating system would run on whatever works for that (2003 or 2008 etc). Can we use Server 2012 R2 as the Domain Controller operating system while running at 2008 R2 functional level for Active Directory and still retain our Cisco support?Hi Allen,
This is from Cisco site (you already may have seen this), though it talk about the directory services but it is specifically mentioned 2008. 2012 may work and specially as you are saying with functional level set to 2008 shouldn't have any issues. But Cisco have not tested that and you may get into support issues (if any).
Its completely tested and supported with CUCM 10.X
Version 9:
http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/admin/9_0_1/ccmsys/CUCM_BK_CD2F83FA_00_cucm-system-guide-90/CUCM_BK_CD2F83FA_00_system-guide_chapter_010011.html#CUCM_TK_C4E65231_00
Configure LDAP directory
If you want to do so, you can add users from your corporate directory to the Cisco Unified Communications Manager database by synchronizing the user data to the database. Cisco Unified Communications Manager allows synchronization from the following directories to the database:
Microsoft Active Directory 2000
Microsoft Active Directory 2003
Microsoft Active Directory 2008
Microsoft Active Directory Application Mode 2003
Microsoft Lightweight Directory Services 2008
iPlanet Directory Server 5.1
Sun ONE Directory Server 5.2
Sun ONE Directory Server 6.x
OpenLDAP 2.3.39
OpenLDAP 2.4
Terry -
Call Manager Migration 7.1.5 to 9.1 / Trunking : ICT vs. SIP
Hello All,
Currently studying for CCNA Voice and have been asked by my current employer to upgrade CUCM 7.1.5 to 9.1.1. There has been a time frame put on the deployment however I want to dig pretty deep into the deployment to learn as much as possible. I am going to start by configuring a trunk between the 2 call manager clusters. from there I will add users to the new call manager and try to convert slowly to the new call manager instead of one big cutover. I will place a route pattern over the trunk so that cucm 9.1 will route through cucm 7.1 while I slowly convert users to the new system. I will then deploy directory numbers in a Staging partition that is not associated with any CSS. Once I have all users and phones configured on the new 9.1 call manager I want to use the bulk admin tool to change the staging partition to the working internal_PT production partition. The users will be imported from LDAP. My questions are, does this sound like a feasible plan? Is there any other difference between a SIP trunk and ICT besides the SIP and H.323 protocol? ( I prefer SIP from what I have read) and will having the same users on both boxes interfere with call processing, if these users and phones are not active yet?Just for the record. I found the solution to my problem. Checking more logs I read this:
The installation has encountered a unrecoverable internal error. For further assistance report the following information to your support provider.
"/usr/local/cm/script/cm-dbl-ontape_backup-install RU PostInstall 9.1.2.11900-12 7.1.5.30000-1 /usr/local/cm/ /common/component/database /common/log/install/capture.txt " terminated. Exceeded max time (240)
The system will now halt.
So I accessed the Dissaster Recovery Section on CUCM and deleted the tape backup device that was configured there. After deleting it the upgrade went well. -
Aging out user profiles in Call Manager
If a user profile is deleted in AD what is the length of time before that user is “aged out” / removed from the CUCM and CUC user DB?
Is there a difference between how it works in 4.1 with Cisco Customer Directory Configuration Plug In vs. LDAP Synchronization in later version?
My understanding is that in 4.1 the Plug In extends AD database to Call Manager and it is not embedded in Call Manager as it is in 5.0 and later. Not sure how that plays on removing users from CUCM through synchronization.
Additionally, my understanding is when a user profile is removed from AD, it gets flagged during Synchronization and that could take a minimum of 6 hours after sync for the user profile to be removed in CUCM or whatever the synchronization is scheduled to.Oli,
It all depends on your sync frequency. If you remove users from AD, CUCM will mark them as "delete pending".
CUCM garbage collector will rip these out 24 hrs later.
http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_configuration_example09186a0080a57c4c.shtml
Every night at 3.15 am, an internal process called the Garbage Collector service runs. This process permanently deletes any account that has been in the
Inactive – Delete Pending state for over 24 hours. The Cisco Unified Communications Manager does not sync Active Directory passwords. Cisco Unified Communications Manager has no knowledge of Microsoft Active Directory encryption mechanism. Instead, in Cisco Unified Communications Manager 5.0, a default password of ciscociscoand a default PIN of 12345are assigned.
cheers
=============================
Please remember to rate useful posts, by clicking on the stars below.
============================= -
Hi,
I have a quick question on the Cisco Call Manger. Is it possible to have a Cisco call manager store a list of contacts, and then transfer all the list to any phone that registers to it? Furthermore, if this is possible, will the contacts be stored in the phones volatile or nonvolatile memory?
Thanks!
Billyin call manager the directory list can be search by ip phones
the rource is from the end users page/settings
these details are either entered manually by system admin
or can be automatic when you integrate with LDAP like Microsoft AD
HTH -
Call Manager 4.1.3 VS 4.2.3
Looking for recommendations and experiences with implementing 4.2.3. I have to decide between 4.1.3 and 4.2.3 with Call Manager and Unified Messaging. Also looking to eventually upgrade to 5.1. Any help is appreciated
a quick list of 4.2 features/enhancements includes:
user features/enhancements -
* call pickup notification
* one touch call pickup
* one touch group pickup
* other group pickup
* directed call park w/BLF
* login/logout of hunt groups
* CCM assistant on phone
* complete transfer on-hook
system features/enhancements -
* AAR support for calls on no bandwidth
* call forward on no-register
* device mobility
* h323 overlap sending/receiving
* h323 annex M.1 support for h323 GW & h225 trunks
* mlpp enhancements
* v.150 secure modem support
administrative features/enhancements -
* support for password aging, complex PWs, oneTime PWs with LDAP
* voice quality stats on cal-by-call basis
please see the following link for more CCM 4.2 info:
http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_data_sheet0900aecd8042402c.html
a quick list of 5.0 features/enhancements includes:
sip trunk & endpoint support features/enhancements -
* native support for sip devices
* cti for ISP phones
* presense information for sip devices
* fault, config, accounting, performance, security enhancements for sip support
* sip trunk enhancements for external applications
* third party sip devices supporting RFC 3261
* sip line side RFCs
* sip trunk RFC support
licensing features/enhancements -
* each device corresponds to a device license unit
* DLUs must be purchased to cover the number of devices connected to CCM
* third party sip devices require DLUs
localization features/enhancements -
* many language support enhancements
please see the following link for more CCM 5.0 info:
http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_data_sheet0900aecd8042403e.html -
Call Manager Phone Services to Personal Address Book
Cisco Forum:
I'm trying to configure Call Manager (8.6.2.x) for Phone Services so that we can use the IP Phone's Service button to access the Personal Address Book & Fast Dials. While I have the option (Test PAB-Fast Dial) appearing when the Services button is selected, the process ends with the bottom screen shot showing "Error in Authentication."
By using the Directories button then selecting the Personal Address Book, I can successfully log into the application.
What am I missing? Below is the current URL being used.
Thank you.
Dan
http://10.2.5.234:8080/ccmpd/login.do?name=#DEVICENAME#&service=pabNelson:
The URL that is working for us is:
http://10.2.5.234:8080/ccmpd/pdCheckLogin.do?name=#DEVICENAME#&service=pab
then use your own IP address for the Call Manager node.
Our Call Manager configuration is shown below.
To access the feature, we hit the Services Button, are prompted with a Personal Address Book option, select it, then are promoted for a UserID/PIN (shown further below), at which point I enter my LDAP ID and a PIN. The PIN is created in Call Manager under User Management ==> End User ==> PIN.
Good luck with your process.
Dan -
Call Manager and AD authentication
We change our AD administrator passwords periodically. We recently had callmgr 4.1 installed on our servers. We can't login to the Administration pages of call manager since we changed the AD admin password. How do I fix this?
When you install the Active Directory plugin for CallManager, you must supply a user account with certain read privilegs to AD. This user account is used to bind to AD and check for valid credential sets when you login to CallManager via MLA, CCMUser etc etc.
So, if you change the password for the account which CallManager uses to bind to AD w/, it breaks.
You're not completely out of luck though. When you install MLA, you configure an account with full admin access that you can use at any point that does not authenticate against AD. Most of the time this account is ccmadministrator and the local administrator password of the box, but could have been altered during install. Refer to the following doc for more detailed info: http://www.cisco.com/univercd/cc/td/doc/product/voice/c_callmg/4_1/sys_ad/4_1_3/ccmcfg/b07mla.htm.
Moving forward, I'd recommend creating a service account (denied interactive login to any boxes on your network) for the sole purpose of CallManager binding to LDAP. Make the password complex, mark it never to expire, user can't change, and you shouldn't have to change the password in the future.
Hope this helps! -
How to configure ldap.ora with multiple ldap contexts
Hello.
My company has recently taken on another environment with it's own LDAP configuration. It's a bit tedious to have to keep switching my ldap.ora for both ldap configurations. Are there any good suggestions for either allowing me to search both LDAP configurations (2 separate LDAP setups, with 2 default context)? Or is there a smooth way to populate 1 LDAP with the others data? Or perhaps some form of redirect on one LDAP to the other LDAP server for queries?
Some basic info: LDAP is Oracle OID version 10gR2
Please let me know if you have any useful ideas...Hi,
Here is the of OVD benefits :
1-Easy to setup and manage via our Management client; 2-Unifies multiple directories into a single access point; 3-Normalize and Unify multiple directories; 4-Directly accesses remote repositories;
5-Allows a unified view of an entry using data from multiple repositories;6-Can act as an LDAP proxy and firewall;
Why you can not use OVD to improve these? Read, LDAP to the other LDAP server for queries, allowing you to search both LDAP?
I hope this helps.
Thiago L Guimaraes -
Where can I find an LDAP Editory for Open LDAP
where can I find an LDAP Editory for Open LDAP... i was using LDAP Editor but it does seem to work any more... where can I find a free download for the LDAP editor for windows...
I put in the following info in the connection section for the
lDAPbrowser but am not able to connect to the server. I get error
saying Failed to connect to ldap://165.252.58.78:389/
Host: 165.252.58.78
Port: 389
Version: 3
Base DN: what do I put here
and do I select SSL
or Anoymous bind
User Info
User DN: what do I put here
and
I am connecting to ldap through my app with the following criteria:
url=ldap://165.252.58.78:389/
ldapHost=165.252.58.78
ldapPort=389
ldapVersion=LDAPConnection.LDAP_V3
ldaploginDN=cn=Manager,dc=accuserverx,dc=com
ldappassword=password -
I'm interesting on buying a Firefox Smart Phone, but
I would like to know if are any app to install on Firefox OS smart phone in order to work with cisco call manager 10.5.
Something like Cisco Jabber for Android o iOS.
Thanks,Hi Itech,
If Cisco Jabber has a webapp, or mobile version of their website available, you should technically be able to access it through Firefox OS.
You may also search Firefox Marketplace for an alternative solution:
* [https://marketplace.firefox.com/]
- Ralph -
Call Manager 8.0 to 9.1 upgrade
We are currently running Call Manager 8, UCCE 8, and CVP 8. ICM/CTI 8.
We would like to upgrade Call Manager 8 to 9.1 first before upgrading UCCE, CVP, etc., it could be months before these are upgraded.
Does anyone know or foresee any issues if UCCE, CVP, etc., are not upgraded right away after CM is upgraded?
Any comment is appreciated. Thanks.Look at the UCCE compatibility matrix as you need the exact versions to find out whether they will work together, of ir you'll need a single window on which to upgrade all.
HTH
java
if this helps, please rate
www.cisco.com/go/pdihelpdesk -
Downloaded the App Sales Call Manager. I can't get it to work on either my Iphone 4s or my Ipad2? Can anybody advise how to fix or even get back my money that i paid for it?
Contact the app developer for support. A link to their website will be in the apps description in the AppStore.
-
Upgrade Call Manager from 8.6.2 to 10.5
Hello All,
We are planning to upgrade a Cisco Call Manager Publisher node from 8.6.2 to 10.5. We want to install a new publisher on a new environment, but we are struggling with some questions.
If we install the Pub node 10.5 can we migrate the configuration from the 8.6.2 to 10.5? Do we need a special tool for this?
If above doesn't work, we can still migrate the existing call manager towards the new servers and start the upgrade, the only problem we face there is that we have to change the publisher's IP because we want to use a new ip addressing scheme.
Kr,
Yannick VranckxYour best bet is to use the new tool: cisco prime collaboration deployment. This fits perfectly into what you want to do here and can easily help you with all aspect of the migration including the ip address change. You can learn how to use the tool here..
https://www.youtube.com/watch?v=JzG4kz1_hL4 -
I recently tried to upgrade my call manager in a lab environment from 9.1.1 to 9.1.2 but failed. The error stated that connection had been lost after 2 hours into it. Connect using CLI. Any help would be greatly appreciated.
SteveYou mean via GUI??
What does the upgrade status via CLI says??
Maybe you are looking for
-
Hi. I have an ipod touch 4th generation, it's in perfectly good condition no cracks or anything. The issue is my ipod is locked and i'm not able to type in my passcode because the numeric keypad isn't working properly.For ex. when i hit 8 (which is t
-
Rollup calculations in Account hierarchy (parent-child type)
Hi, I want to create a parent-child relationship type Account hierarchy using Universe. The hierarchy has to support different set of calculations for roll ups action for different branches in the same level. Eg. Balance Sheet (+)Asse
-
When i open shared Document folder getting "An unexpected error has occurred. " error
Hi, I am getting "An unexpected error has occurred. " error when i open Shared Document folder in Internet URL. But if i open the foder in newtab i can view the documents with out error also intranet URL also doesnt have any problem. I am using Share
-
Hi Experts, I'm trying to tune this query but nothing seems to reduce the cost. Any pointers is highly appreciated. PERSON_DETAIL – +2,275,776 rows+ D_OPN – +1,57,094+ D_GPN – +49,197+ Query fetches –- +2,704,577 rows+ explain plan for SELECT
-
How to use "packageless" class in resin app
Good day to all. I have posted this on the Resin support but haven't heard an answer. If anyone can help I would really appreciate it. I have a web application that used a combination of "packaged" classes and non "packaged" third party classes. It w