Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1395
Views
15
Helpful
26
Replies

LDAP Integration

mightyking
Level 6
Level 6

‎05-03-2017 07:31 AM - edited ‎03-17-2019 10:13 AM

Hello Everyone,

We are planning to integrate our CUCM with the corporate AD and have some questions:

1) In our organization, the names contain some special characters such as é, ç, è etc...  Are there any specific consierations regarding those characters before the integration?

2)  What are the Fields/Atributes we need to take into consideration in AD for integration with CUCM?

3) Any recommendations for a smouth integration?

CUCM version : 10.5.2

Thanks,

MK

Labels:
0 Helpful
26 Replies 26

mightyking
Level 6
Level 6
In response to Ratheesh Kumar

‎05-31-2018 01:48 PM

tajkarb existed in the CUCM as a local user. The extension for tajkarb is 1208528.

I synced tajkarb using sAMAcountName which failed then I used TelephoneNumber. The sync worked but created  a second user account with user id 1208528 in the CUCM. It looks like after 72 hours the tajkarb has been replaced by 1208528. Now the user tajkarb does not exist anymore.

I have created tajkarb2 in the AD and CUCM and trying to sync using sAMAcountName with no luck. Please see the attached sreenshot.

 

Thanks,

 

MK 

Preview file
122 KB
0 Helpful

Ratheesh Kumar
VIP Alumni
VIP Alumni
In response to mightyking

‎05-31-2018 03:46 PM

Hi there
Could you try this.
Login to CUCM CLI and find out the inactive users
admin:run sql select userid, status from enduser where status = '2'
If you find tajkarb move it to active
admin:run sql update enduser set status=1 where status = "2"

Confirm the status
Step 4: Confirm active status (status=1)
admin:run sql select userid,status from enduser where userid = ' tajkarb'

Go to CUCM and move this user to a Local user and delete
Then try to do a sync again


Hope this Helps
Cheers
Rath!

***Please rate helpful posts***






mightyking
Level 6
Level 6
In response to Ratheesh Kumar

‎06-01-2018 05:44 AM

These are really nice commands. I give you 5 points just for sharing them. But before going throught all thoses steps, I want to understand why the user tajkarb2 doesn't get synced? tajkarb2 is a local user in CUCM and does existe in the LDAP directory. I tried another user who exist in the CUCM and LDAP but does not get synced when using sAMAcountName.

 

Thanks,

 

MK

0 Helpful

Ratheesh Kumar
VIP Alumni
VIP Alumni
In response to mightyking

‎06-01-2018 06:08 AM

Oh thanks mate, I thought that nailed our issue. We can dig more if you could share the Dirsync logs from RTMT. I hope we could get some more clues from it.

 

Most likely I would call as a AD issue rather than a CUCM issue. But neither I am not an expert to say that from an AD point of view nor I dont have proof for that.

 

 

Hope this Helps

Cheers
Rath!

***Please rate helpful posts***

 

 

0 Helpful

Ratheesh Kumar
VIP Alumni
VIP Alumni
In response to Ratheesh Kumar

‎06-01-2018 06:10 AM

Hi there

 

Also could you share the LDAP Directory config page screenshot?

 

Hope this Helps

Cheers
Rath!

***Please rate helpful posts***

 

 

0 Helpful

mightyking
Level 6
Level 6
In response to Ratheesh Kumar

‎06-01-2018 07:29 AM

Please find attached the LDAP directory config.

You can also see the screenhot from the LDAP directory where you can find the user tajkarb2 which is the user 'Tajkarime Bahmen". In the black screenshot, you can also find the other test user that I am trying to sync using sAMAcountName.

 

I will collect the DirSync log and post it shortly.

All I need to do is to go to Troubleshooting Trace Settings and select the Cisco DirSync and in the RTMT select the Cisco DirSync and collect the logs, is that right? Do I need to add any other services?

Preview file
129 KB
0 Helpful

mightyking
Level 6
Level 6
In response to mightyking

‎06-02-2018 12:59 PM

Anybody with any ideas?

 

Thanks,

 

Mk

0 Helpful

Ratheesh Kumar
VIP Alumni
VIP Alumni
In response to mightyking

‎06-02-2018 05:53 PM

Hi there

 

If you could share DirSync logs, we could try a shot.

 

 

Hope this Helps

Cheers
Rath!


***Please rate helpful posts***

 

0 Helpful

mightyking
Level 6
Level 6
In response to Ratheesh Kumar

‎06-04-2018 08:59 AM

Hi,

Please find attached the logs for DirSync.

 

Thanks,

 

MK

DirSync.tar
0 Helpful

mightyking
Level 6
Level 6
In response to Ratheesh Kumar

‎06-04-2018 01:05 PM

Hi Cisco Rath,

I used the sql command to modify the user status of user tajkarb. It is now displayed as Inactive LDPA Synchronized User (status = 2). How can I change the status of this user to LOCAL USER in the CUCM?

 

Thanks,

 

MK

0 Helpful

Ratheesh Kumar
VIP Alumni
VIP Alumni
In response to mightyking

‎06-04-2018 01:17 PM

That's positive.
First of all you should make the user as Active
admin:run sql update enduser set status=1 where status = "2"

Confirm active status (status=1)
admin:run sql select userid,status from enduser where userid = ' tajkarb'
Go to CUCM and move this user to a Local user and delete
CUCM End User >> Select the user >> Convert LDAP Synchronized User to Local User (for CUCM pre -11 version)


Then try to do a sync again

Hope this Helps
Cheers
Rath!


***Please rate helpful posts***
0 Helpful

mightyking
Level 6
Level 6
In response to Ratheesh Kumar

‎06-04-2018 01:46 PM

I converted the user tajkarb to local user and performed a sync but no luck.

Please find attached the DirSync log files.

 

Thanks,

 

MK 

DirSync.tar
0 Helpful
Customers Also Viewed These Support Documents