Solved: CUCM 11.5 LDAP Filter based on OU

jayage · ‎01-05-2017

Hello

is it possible to filter users sitting in one organization unit?

We got the following hierarchy:

OU=Users,DC=corporate,DC=com

OU=BU1,OU=Users,DC=corporate,DC=com

OU=BU2,OU=Users,DC=corporate,DC=com

OU=BU3,OU=Users,DC=corporate,DC=com

BU stands for business unit, our subsidiaries. Our ldap directory in CUCM is currently set to sync everything above Users and we don't want to add different directories but BU3 shouldn't get imported. Any suggestion on how to do that? The ldap admin doesn't want to add a security group to these users in BU3 and some of the phone numbers used there are similar to those in other BUs.

Thank you

Jaime Valencia · ‎01-05-2017

Another option is to control which OUs you can sync is by granting or denying read permissions to the user you're using to create the integration.

You'll only sync what they have read permissions for.

HTH

java

if this helps, please rate

View solution in original post

Chris Deren · ‎01-05-2017

Sure, with current versions of CUCM (I believe as of 10.0) you can build up to 20 LDAP directories, in prior versions it was 5.

Jaime Valencia · ‎01-05-2017

Another option is to control which OUs you can sync is by granting or denying read permissions to the user you're using to create the integration.

You'll only sync what they have read permissions for.

HTH

java

if this helps, please rate

jayage · ‎01-06-2017

works great, thank you