Corporate LDAP vs. Call Manager LDAP

Similar Messages

• Call Manager 9.1 Active Directory Question(s)

  Hello All!
  Firstly let me establish that I am not an administrator of our VoIP system however I do manage the Server side of our network.  We are in the process of planning an Active Directory upgrade and I'm having some difficulty getting a question answered about the requirements for  Call Manager.  We are at version 9.1 of Call Manager currently with our Active Directory version at 2003 R2.  We are planning to upgrade to Active Directory version 2008 R2 (functional level) however we would like to use Server 2012 R2 as the OS for our AD servers.  From a Microsoft standpoint this is a valid solution, it's built into Active Directory that you can run at different "functional levels" of AD on higher server operating systems.  Any Call Manager applications that require a Windows operating system would run on whatever works for that (2003 or 2008 etc).  Can we use Server 2012 R2 as the Domain Controller operating system while running at 2008 R2 functional level for Active Directory and still retain our Cisco support?

  Hi Allen,
  This is from Cisco site (you already may have seen this), though it talk about the directory services but it is specifically mentioned 2008. 2012 may work and specially as you are saying with functional level set to 2008 shouldn't have any issues. But Cisco have not tested that and you may get into support issues (if any).
  Its completely tested and supported with CUCM 10.X
  Version 9:
  http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/admin/9_0_1/ccmsys/CUCM_BK_CD2F83FA_00_cucm-system-guide-90/CUCM_BK_CD2F83FA_00_system-guide_chapter_010011.html#CUCM_TK_C4E65231_00
  Configure LDAP directory
  If you want to do so, you can add users from your corporate directory to the Cisco Unified Communications Manager database by synchronizing the user data to the database. Cisco Unified Communications Manager allows synchronization from the following directories to the database:
  Microsoft Active Directory 2000
  Microsoft Active Directory 2003
  Microsoft Active Directory 2008
  Microsoft Active Directory Application Mode 2003
  Microsoft Lightweight Directory Services 2008
  iPlanet Directory Server 5.1
  Sun ONE Directory Server 5.2
  Sun ONE Directory Server 6.x
  OpenLDAP 2.3.39
  OpenLDAP 2.4
  Terry

• Call Manager Migration 7.1.5 to 9.1 / Trunking : ICT vs. SIP

  Hello All,
       Currently studying for CCNA Voice and have been asked by my current employer to upgrade CUCM 7.1.5 to 9.1.1. There has been a time frame put on the deployment however I want to dig pretty deep into the deployment to learn as much as possible. I am going to start by configuring a trunk between the 2 call manager clusters. from there I will add users to the new call manager and try to convert slowly to the new call manager instead of one big cutover. I will place a route pattern over the trunk so that cucm 9.1 will route through cucm 7.1 while I slowly convert users to the new system. I will then deploy directory numbers in a Staging partition that is not associated with any CSS. Once I have all users and phones configured on the new 9.1 call manager I want to use the bulk admin tool to change the staging partition to the working internal_PT production partition. The users will be imported from LDAP.  My questions are, does this sound like a feasible plan?  Is there any other difference between a SIP trunk and ICT besides the SIP and H.323 protocol? ( I prefer SIP from what I have read) and will having the same users on both boxes interfere with call processing, if these users and phones are not active yet?

  Just for the record. I found the solution to my problem. Checking more logs I read this:
  The installation has encountered a unrecoverable internal error. For further assistance report the following information to your support provider.
  "/usr/local/cm/script/cm-dbl-ontape_backup-install RU PostInstall 9.1.2.11900-12 7.1.5.30000-1 /usr/local/cm/ /common/component/database /common/log/install/capture.txt " terminated. Exceeded max time (240)
  The system will now halt.
  So I accessed the Dissaster Recovery Section on CUCM and deleted the tape backup device that was configured there. After deleting it the upgrade went well.

• Aging out user profiles in Call Manager

  If a user profile is deleted in AD what is the length of time before that user is “aged out” / removed from the CUCM and CUC user DB?
  Is there a difference between how it works in 4.1 with Cisco Customer Directory Configuration Plug In vs. LDAP Synchronization in later version?
  My understanding is that in 4.1 the Plug In extends AD database to Call Manager and it is not embedded in Call Manager as it is in 5.0 and later. Not sure how that plays on removing users from CUCM through synchronization.
  Additionally, my understanding is when a user profile is removed from AD, it gets flagged during Synchronization and that could take a minimum of 6 hours after sync for the user profile to be removed in CUCM or whatever the synchronization is scheduled to.

  Oli,
  It all depends on your sync frequency. If you remove users from AD, CUCM will mark them as "delete pending".
  CUCM garbage collector will rip these out 24 hrs later. 
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_configuration_example09186a0080a57c4c.shtml
  Every night at 3.15 am, an internal process called the Garbage Collector service runs. This process permanently deletes any account that has been in the
  Inactive – Delete Pending state for over 24 hours. The Cisco Unified Communications Manager does not sync Active Directory passwords. Cisco Unified Communications Manager has no knowledge of Microsoft Active Directory encryption mechanism. Instead, in Cisco Unified Communications Manager 5.0, a default password of ciscociscoand a default PIN of 12345are assigned.
  cheers
  =============================
  Please remember to rate useful posts, by clicking on the stars below. 
  =============================

• Cisco Call Manager Question

  Hi,
  I have a quick question on the Cisco Call Manger.  Is it possible to have a Cisco call manager store a list of contacts, and then transfer all the list to any phone that registers to it?  Furthermore, if this is possible, will the contacts be stored in the phones volatile or nonvolatile memory?
  Thanks!
  Billy

  in call manager the directory list can be search by ip phones
  the rource is from the end users page/settings
  these details are either entered manually by system admin
  or can be automatic when you integrate with LDAP like Microsoft AD
  HTH

• Call Manager 4.1.3 VS 4.2.3

  Looking for recommendations and experiences with implementing 4.2.3. I have to decide between 4.1.3 and 4.2.3 with Call Manager and Unified Messaging. Also looking to eventually upgrade to 5.1. Any help is appreciated

  a quick list of 4.2 features/enhancements includes:
  user features/enhancements -
  * call pickup notification
  * one touch call pickup
  * one touch group pickup
  * other group pickup
  * directed call park w/BLF
  * login/logout of hunt groups
  * CCM assistant on phone
  * complete transfer on-hook
  system features/enhancements -
  * AAR support for calls on no bandwidth
  * call forward on no-register
  * device mobility
  * h323 overlap sending/receiving
  * h323 annex M.1 support for h323 GW & h225 trunks
  * mlpp enhancements
  * v.150 secure modem support
  administrative features/enhancements -
  * support for password aging, complex PWs, oneTime PWs with LDAP
  * voice quality stats on cal-by-call basis
  please see the following link for more CCM 4.2 info:
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_data_sheet0900aecd8042402c.html
  a quick list of 5.0 features/enhancements includes:
  sip trunk & endpoint support features/enhancements -
  * native support for sip devices
  * cti for ISP phones
  * presense information for sip devices
  * fault, config, accounting, performance, security enhancements for sip support
  * sip trunk enhancements for external applications
  * third party sip devices supporting RFC 3261
  * sip line side RFCs
  * sip trunk RFC support
  licensing features/enhancements -
  * each device corresponds to a device license unit
  * DLUs must be purchased to cover the number of devices connected to CCM
  * third party sip devices require DLUs
  localization features/enhancements -
  * many language support enhancements
  please see the following link for more CCM 5.0 info:
  http://www.cisco.com/en/US/products/sw/voicesw/ps556/products_data_sheet0900aecd8042403e.html

• Call Manager Phone Services to Personal Address Book

  Cisco Forum:
  I'm trying to configure Call Manager (8.6.2.x) for Phone Services so that we can use the IP Phone's Service button to access the Personal Address Book & Fast Dials.  While I have the option (Test PAB-Fast Dial) appearing when the Services button is selected, the process ends with the bottom screen shot showing "Error in Authentication."
  By using the Directories button then selecting the Personal Address Book, I can successfully log into the application.
  What am I missing?  Below is the current URL being used.
  Thank you.
  Dan
  http://10.2.5.234:8080/ccmpd/login.do?name=#DEVICENAME#&service=pab

  Nelson:
  The URL that is working for us is: 
  http://10.2.5.234:8080/ccmpd/pdCheckLogin.do?name=#DEVICENAME#&service=pab
  then use your own IP address for the Call Manager node.
  Our Call Manager configuration is shown below.
  To access the feature, we hit the Services Button, are prompted with a Personal Address Book option, select it, then are promoted for a UserID/PIN (shown further below), at which point I enter my LDAP ID and a PIN.  The PIN is created in Call Manager under User Management ==> End User ==> PIN.
  Good luck with your process.
  Dan

• Call Manager and AD authentication

  We change our AD administrator passwords periodically. We recently had callmgr 4.1 installed on our servers. We can't login to the Administration pages of call manager since we changed the AD admin password. How do I fix this?

  When you install the Active Directory plugin for CallManager, you must supply a user account with certain read privilegs to AD. This user account is used to bind to AD and check for valid credential sets when you login to CallManager via MLA, CCMUser etc etc.
  So, if you change the password for the account which CallManager uses to bind to AD w/, it breaks.
  You're not completely out of luck though. When you install MLA, you configure an account with full admin access that you can use at any point that does not authenticate against AD. Most of the time this account is ccmadministrator and the local administrator password of the box, but could have been altered during install. Refer to the following doc for more detailed info: http://www.cisco.com/univercd/cc/td/doc/product/voice/c_callmg/4_1/sys_ad/4_1_3/ccmcfg/b07mla.htm.
  Moving forward, I'd recommend creating a service account (denied interactive login to any boxes on your network) for the sole purpose of CallManager binding to LDAP. Make the password complex, mark it never to expire, user can't change, and you shouldn't have to change the password in the future.
  Hope this helps!

• How to configure ldap.ora with multiple ldap contexts

  Hello.
  My company has recently taken on another environment with it's own LDAP configuration. It's a bit tedious to have to keep switching my ldap.ora for both ldap configurations. Are there any good suggestions for either allowing me to search both LDAP configurations (2 separate LDAP setups, with 2 default context)? Or is there a smooth way to populate 1 LDAP with the others data? Or perhaps some form of redirect on one LDAP to the other LDAP server for queries?
  Some basic info: LDAP is Oracle OID version 10gR2
  Please let me know if you have any useful ideas...

  Hi,
  Here is the of OVD benefits :
  1-Easy to setup and manage via our Management client; 2-Unifies multiple directories into a single access point; 3-Normalize and Unify multiple directories; 4-Directly accesses remote repositories;
  5-Allows a unified view of an entry using data from multiple repositories;6-Can act as an LDAP proxy and firewall;
  Why you can not use OVD to improve these? Read, LDAP to the other LDAP server for queries, allowing you to search both LDAP?
  I hope this helps.
  Thiago L Guimaraes

• Where can I find an LDAP Editory for Open LDAP

  where can I find an LDAP Editory for Open LDAP... i was using LDAP Editor but it does seem to work any more... where can I find a free download for the LDAP editor for windows...

  I put in the following info in the connection section for the
  lDAPbrowser but am not able to connect to the server. I get error
  saying Failed to connect to ldap://165.252.58.78:389/
  Host: 165.252.58.78
  Port: 389
  Version: 3
  Base DN: what do I put here
  and do I select SSL
  or Anoymous bind
  User Info
  User DN: what do I put here
  and
  I am connecting to ldap through my app with the following criteria:
  url=ldap://165.252.58.78:389/
  ldapHost=165.252.58.78
  ldapPort=389
  ldapVersion=LDAPConnection.LDAP_V3
  ldaploginDN=cn=Manager,dc=accuserverx,dc=com
  ldappassword=password

• Hi Team, I wuold like to know if you have any app to make Firefox OS working with cisco Call Manager 10.5. Something like Cisco Jabber for Android or iOS.

  I'm interesting on buying a Firefox Smart Phone, but
  I would like to know if are any app to install on Firefox OS smart phone in order to work with cisco call manager 10.5.
  Something like Cisco Jabber for Android o iOS.
  Thanks,

  Hi Itech,
  If Cisco Jabber has a webapp, or mobile version of their website available, you should technically be able to access it through Firefox OS.
  You may also search Firefox Marketplace for an alternative solution:
  * [https://marketplace.firefox.com/]
  - Ralph

• Call Manager 8.0 to 9.1 upgrade

  We are currently running Call Manager 8, UCCE 8, and CVP 8. ICM/CTI 8. 
  We would like to upgrade Call Manager 8 to 9.1 first before upgrading UCCE, CVP, etc., it could be months before these are upgraded.
  Does anyone know or foresee any issues if UCCE, CVP, etc., are not upgraded right away after CM is upgraded?
  Any comment is appreciated.  Thanks.

  Look at the UCCE compatibility matrix as you need the exact versions to find out whether they will work together, of ir you'll need a single window on which to upgrade all.
  HTH
  java
  if this helps, please rate
  www.cisco.com/go/pdihelpdesk

• Just downloaded Sales Call Manager App...I can't get it to work on either my Iphone 4S or My Ipad 2?

  Downloaded the App Sales Call Manager. I can't get it to work on either my Iphone 4s or my Ipad2? Can anybody advise how to fix or even get back my money that i paid for it?

  Contact the app developer for support. A link to their website will be in the apps description in the AppStore.

• Upgrade Call Manager from 8.6.2 to 10.5

  Hello All,
  We are planning to upgrade a Cisco Call Manager Publisher node from 8.6.2 to 10.5. We want to install a new publisher on a new environment, but we are struggling with some questions.
  If we install the Pub node 10.5 can we migrate the configuration from the 8.6.2 to 10.5? Do we need a special tool for this?
  If above doesn't work, we can still migrate the existing call manager towards the new servers and start the upgrade, the only problem we face there is that we have to change the publisher's IP because we want to use a new ip addressing scheme.
  Kr,
  Yannick Vranckx

  Your best bet is to use the new tool: cisco prime collaboration deployment. This fits perfectly into what you want to do here and can easily help you with all aspect of the migration including the ip address change. You can learn how to use the tool here..
  https://www.youtube.com/watch?v=JzG4kz1_hL4

• What are the essentials needed before upgrading from call manager 9.1.1 to call manager 9.1.2?

  I recently tried to upgrade my call manager in a lab environment from 9.1.1 to 9.1.2 but failed. The error stated that connection had been lost after 2 hours into it. Connect using CLI. Any help would be greatly appreciated.
  Steve

  You mean via GUI??
  What does the upgrade status via CLI says??