Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
416
Views
10
Helpful
5
Replies

anonymous jabber accounts restriction

monasir
Level 1
Level 1

‎02-06-2019 07:53 AM - edited ‎03-17-2019 02:04 PM

For a customer we have 5 accounts (CSF)

These accounts are not allowed to find any other accounts in phonebooks, and are only allowed to call each other (5 accounts)

This needs to be done in the cucm.

 

Anybody idea whats the best way i can make a workaround for this.

Should i place all the accounts in specific css and partitions?

 

Any help would be appreciated.

Labels:
0 Helpful
5 Replies 5

Jaime Valencia
Cisco Employee
Cisco Employee

‎02-06-2019 08:23 AM

Yes, CSS and partitions for calls

If you're using UDS, there's no way to prevent them from finding someone else, if you're using LDAP, configure them in a separate OU and configure their service profile so they can only look into their own OU with just them.

HTH

java

if this helps, please rate

George Sotiropoulos
Cisco Employee
Cisco Employee
In response to Jaime Valencia

‎02-06-2019 08:58 AM

Hell Jaime,

 

Can you suggest any reference for quick comparison of what you win and lose between Using UDS and LDAP ?

 

George

Please Rate Posts (by clicking on Star) and/or Mark Solutions as Accepted, when applies
0 Helpful

Jaime Valencia
Cisco Employee
Cisco Employee
In response to George Sotiropoulos

‎02-06-2019 09:19 AM

UDS is a flat directory and you have little to no control over the field mapping, etc.

LDAP allows you to configure search bases and filters, point to specific LDAP/GC, use SSL,  adjust the field mapping, configure LDAP groups, etc.

HTH

java

if this helps, please rate

George Sotiropoulos
Cisco Employee
Cisco Employee
In response to Jaime Valencia

‎02-06-2019 09:47 AM

Thanks a lot!!

I am using LDAP and I was wondering what I may be missing.

 

George

 

 

Please Rate Posts (by clicking on Star) and/or Mark Solutions as Accepted, when applies
0 Helpful

Jonathan Schulenberg
Hall of Fame
Hall of Fame
In response to George Sotiropoulos

‎02-06-2019 06:10 PM - edited ‎02-06-2019 06:11 PM

Adding to Jaime’s response: Ambiguous Name Resolution (ANR, a MS AD feature) doesn’t work with UDS. You also lose two possibly useful attributes: jpegPhoto (must use URL substitution to a HTTP server) and otherTelephone for secondary number lookups.

UDS also has a load on CUCM that you cannot assign to dedicated nodes as you do with all other services. This can become a design issue at scale.

Despite all of that, it’s the only option that works for MRA-connected endpoints or CE endpoints, unless you redirect them to TMS.

My design default is UDS but there are customer environments where I need to use CDI/LDAP instead.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents