Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1479
Views
6
Helpful
6
Replies

CUCM behavior if LDAP server is down

Go to solution
mr_cisco_cisco
Level 1
Level 1

‎01-27-2016 11:28 PM - edited ‎03-17-2019 05:39 AM

Suppose CUCM is integrated with LDAP and it's configured to re-sync every hour.  If the LDAP server is down for 24 hours what happens to the users in CUCM?  Will they be marked inactive?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Manish Gogna
Cisco Employee
Cisco Employee
In response to mr_cisco_cisco

‎01-28-2016 03:40 AM

Hi,

Merely loss of connectivity with AD server will not mark them inactive. If the synchronization agreement configured under LDAP Integration on cucm is deleted then they will be marked active. As per the SRND "Once users are synchronized from LDAP into the Unified CM database, deletion of a synchronization configuration will cause users that were imported by that configuration to be marked inactive in the database. Garbage collection will subsequently remove those users."

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/srnd/collab10/collab10/directry.html

However, if you have configured LDAP authentication as well then end user logins and services would be affected.

That's why you have the option to add upto three AD servers for Directory integration as well as authentication for high availability.

Manish

View solution in original post

6 Replies 6

Go to solution
Kevin Monteiro
Level 7
Level 7

‎01-27-2016 11:40 PM

Hello,

Here is the document with the explanation:

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/srnd/collab10/collab10/directry.html#pgfId-1067953

It clearly explains everything in details with a example.

Rate the post accordingly.

Regards,

Kevin Monteiro

0 Helpful

Go to solution
mr_cisco_cisco
Level 1
Level 1
In response to Kevin Monteiro

‎01-28-2016 12:33 AM

"If none of the directory servers responds, then the synchronization fails, but it will be attempted again according to the configured synchronization schedule."

So CUCM will keep trying indefinitely?

0 Helpful

Go to solution
devils_advocate
Level 7
Level 7
In response to mr_cisco_cisco

‎01-28-2016 03:37 AM

Seems that way.

One sync attempt per hour is not going to put much strain on the network.

If your LDAP server is down for more than an hour, you have bigger issues than just the CUCM sync ;)

0 Helpful

Go to solution
Manish Gogna
Cisco Employee
Cisco Employee
In response to mr_cisco_cisco

‎01-28-2016 03:40 AM

Hi,

Merely loss of connectivity with AD server will not mark them inactive. If the synchronization agreement configured under LDAP Integration on cucm is deleted then they will be marked active. As per the SRND "Once users are synchronized from LDAP into the Unified CM database, deletion of a synchronization configuration will cause users that were imported by that configuration to be marked inactive in the database. Garbage collection will subsequently remove those users."

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/srnd/collab10/collab10/directry.html

However, if you have configured LDAP authentication as well then end user logins and services would be affected.

That's why you have the option to add upto three AD servers for Directory integration as well as authentication for high availability.

Manish

Go to solution
Jaime Valencia
Cisco Employee
Cisco Employee
In response to mr_cisco_cisco

‎01-28-2016 06:29 AM

No, it will not continue indefinitely, did you read the link and how the garbage disposal mechanism works?????

HTH

java

if this helps, please rate

Go to solution
mr_cisco_cisco
Level 1
Level 1
In response to Jaime Valencia

‎01-28-2016 08:47 AM

Re-read my question.

0 Helpful
Customers Also Viewed These Support Documents