We are currently running a single UC cluster containing CUCM 8.x (pub/sub), UCCX HA 8.x, CUP 8.6.4, and CUC 8.5. The cluster is integrated with AD via LDAP for authentication/user consistancy purposes. We have recently been tasked with designing a disaster recovery scenario that would give us the ability to operate if we lost the above cluster. Deploying another subscriber will not work for us in this scenario. My thoughts are to obviously have 2 seperate clusters tied together with an ICT. Easy right? Ha!
Here is my challenge. Our CAD agents work out of one geographic location and it happens to be the same building the UC cluster resides in. They use active directory for CAD logins and extension mobility to hot desk. I realize with CUCM 8.x, we can take advatage of the EMCC feature which should cover extension mobility in the event we lost the primary cluster. The issue is with the LDAP integration. I do not believe you can integrate 2 seperate UC clusters with the same active directory forest (cannot find a definitive answer per SRND) so this defeats a dynamic failover scenario. In my mind, you would have to have 2 seperate active directory forests completely independent of each other or have one cluster that is not integrated with LDAP. I want to avoid that at all costs! I realize we could also have agents deployed at the other location but that does not solve the LDAP dependency and its just not an option for us at this time.
My initial thoughts were to deploy a cheaper type solution in the secondary site (UC500/CME/SMB) with no tie to AD and be completely independent of the primary cluster. This would only be for use by the folks in the call center and only applicable in a DR scenario. If we had a DR scenario, we would have the agents work from home via a VPN connection into the secondary site and fire up a softphone to take calls with (no CAD and I can get creative to mimic IVR type stuff). All of our 8XX numbers could be remote call forwarded to the secondary solution via PRI or SIP. Is there anyone out there with a simlar setup that can point me in the right direction?
I cannot see why you would not be able to integrate two UC clusters with the same AD forest - the user provisioing into CUCM, CUC etc. is a one way sync. Authentication will pass requests to AD but that will not care what end system it is authenticating. Apologies if I have missed something but afaik this should not be an issue.
If you did try to maintain two separate clusters or systems you would have a big overhead in keeping them synced.
I would recommend examing every option for provisioning acceptable resilence on a single cluster. If you run it on UCS using a shared SAN then you can use some of the clever VMware features to provide enhanced resilience - see link below for more details.
IntroductionFeatured ExpertQ:Under what circumstances does it make sense to view "resource total" as opposed to "resource available" or vice versa?Q:Can that be sent to a Syslog server?Q:Is it possible to see when a device has changed, for example, if a ...
(view in My Videos)
Community Live- Tour of the Real-Time Monitoring Tool
(Live event - Tuesday, 20 April, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)
This event had place on Tuesday 20th, April 2021 at 10:00 hrs PDT
What is th...
Hello Admin Community!
I’m recruiting participants for an upcoming study looking at large meeting troubleshooting in Control Hub. If you’d like to participate, please fill out this quick, 2 min. survey. Thanks! https://www.surveymonkey.com/r/...
Don't you just hate having to run RTMT in a virtual machine, well here it runs in an app for mac. I have complied a version for CUCM 14.x ( from a version I got for 11.x ) It works on older versions also. Here it is https://haffi.is/rt...
Ask questions from Tuesday, April 20 to Friday, April 30, 2021
To participate in this event, please use the button to ask your questions
Tour of the Real-Time Monitoring Tool
Have any questions about the Real-Time Monitoring Tool?
What is the...