We are planning a new deployment for a client with multiple forests and domains. I know that you can use LDS to combine the directories and allow users to login. If we were to implement SSO and the IdP was able to authenticate users in each domain, would we need to do LDS still? I know we would need to do the LDAP directory sync but I'm wondering if SSO would negate having to do the LDAP authentication in CUCM.
SSO does not negate the LDAP sync - you still need to pull End Users in to the database.
The only officially supported way to support multi-forest on the same cluster is with MS LDS. The problem is that LDS is very poorly understood by most Microsoft admins. You may want to consider the viability of a cluster per-forest and rely on things such as ILS, EMCC, IM&P Inter-Cluster Peering, and CUC HTTPS Digital Networking instead.
This document is intended to receive any new ideas for TAC to create new useful walkthrough videos to help set up deployments, integrations, etc.
Feel free to share any feedback about new walkthrough videos you consider useful, please share your o...
Configuring Cloud Connected PSTN (CCP) – Easy as 1-2-3!
STEP 1: PREPARE
Before you can configure your CCP in Control Hub, you must procure PSTN services from an authorized Webex Calling CCP Partn...
To participate in this event, please use the button to ask your questions
This topic is a chance to discuss more about how to read Cisco Unified Communications trace files. In this session, Cisco D...