yes we did LDAP autentication , the users not matched before enabling the sync , and we deleted the user on CM then add it again , and we did this all after deleting the the LDAP sync .

kindly know that we didn't made the autentication we just did sync and then we disabled it .

The users will be receated after enabling the sync so the users would have to use their new usernames and you would want to make sure their "Standard CCM End User" permission was re-set on the user since the user will have no permissions when it's newly created.

u mean that after enable the sync the users automatic recreated ?

and what is thier new usernames ? and kindly know that all the usernames on CM not matched with usernames on active directory

and kindly can u please send me the solution in steps i have to do to complete this task .

and many thanks for ur help .

I just tested this, if the username does not match exactly in LDAP then the user will be marked as inactive on the end user page, this will make it so that the user cannot login to ccmuser.  You want to make sure the usernames are exactly the same or make sure the users use their new userID's when trying to login.

what u mean by new ID ?

Under LDAP > LDAP System, LDAP Attribute for User ID is default set to sAMAccountName.  This is what call manager uses for the UserID field in the User Management > End Users configuration page.

but why when i disabled sync the password didn't get back as it was ?