Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1166
Views
0
Helpful
1
Replies

Jabber login failed after AD password expires

anis_cisco
Level 1
Level 1

‎04-08-2014 02:29 PM - edited ‎03-17-2019 04:05 PM

Hello all,

We have CUCM 9.1.2 (integrated/authenticated via LDAP) IM&P 9 & latest Jabber client for windows.
I need to understand what is the procedure Jabber uses to login using AD credentials ? and how it will authenticate when user credential expires or update into AD ? e.g. If user update his password into AD, will the user be able to login into Jabber with new password immediately or we need to perform LDAP synchronization in CUCM first ?

From CUCM 9 SRSND " Synchronizing Mechanism " chapter, it seems we need to wait for CUCM to re-synch at next schedule time & minimum time for re-synch is 6hours.

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/srnd/9x/uc9x/directry.html#wp1045229

"Subsequently when changes are made in the corporate directory, the synchronization from Microsoft Active Directory occurs as a full re-synchronization at the next scheduled synchronization period."

Can any body share if there is any work around for this ? Because admins can not do manual synch every time there user update passwords & user also can not wait for 6hours to be able to login again.

Regards,

 

Labels:
0 Helpful
1 Reply 1

Jaime Valencia
Cisco Employee
Cisco Employee

‎04-08-2014 06:13 PM

Sync does not mean authenticate. Don't confuse what each one does.

You need to read AUTHENTICATION from the SRND, not synchronization.

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/srnd/9x/uc9x/directry.html#wp1045365

When you try to authenticate, in that moment the BIND operation is performed.

HTH

java

if this helps, please rate
0 Helpful
Customers Also Viewed These Support Documents