Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1940
Views
0
Helpful
3
Replies

LDAP intgration with CUCM over SSL

Go to solution
atulkaul1985
Level 1
Level 1

‎11-06-2012 11:03 PM - edited ‎03-16-2019 02:03 PM

Hi,

I am facing issues while integration LDAP directory to CUCM over SSL.

Can somebody please guide me with the exact steps?

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Jonathan Schulenberg
Hall of Fame
Hall of Fame

‎11-07-2012 02:29 AM

You need to upload the root certificate of the LDAP server's certificate chain to the tomcat-trust store. If you're running CUCM <= 7.x there may also be a directory-trust store. If there is it should go there as well.

Also, if the LDAP server is a Microsoft AD Global Catalog server you would need to use port 3269 instead of the standard 636.

Please remember to rate helpful responses and identify helpful or correct answers.

View solution in original post

0 Helpful

Go to solution
Robert Thomas
Level 7
Level 7

‎11-07-2012 05:52 AM

Just two things you would differently.

Insert the AD certificates to ALL CUCM server in the corresponding truststores as Johnatan mentioned and check the use SSL under the LDAP directory or LDAP authentication section.

Sent from Cisco Technical Support iPhone App

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Jonathan Schulenberg
Hall of Fame
Hall of Fame

‎11-07-2012 02:29 AM

You need to upload the root certificate of the LDAP server's certificate chain to the tomcat-trust store. If you're running CUCM <= 7.x there may also be a directory-trust store. If there is it should go there as well.

Also, if the LDAP server is a Microsoft AD Global Catalog server you would need to use port 3269 instead of the standard 636.

Please remember to rate helpful responses and identify helpful or correct answers.

0 Helpful

Go to solution
Robert Thomas
Level 7
Level 7

‎11-07-2012 05:52 AM

Just two things you would differently.

Insert the AD certificates to ALL CUCM server in the corresponding truststores as Johnatan mentioned and check the use SSL under the LDAP directory or LDAP authentication section.

Sent from Cisco Technical Support iPhone App

0 Helpful

Go to solution
Stonerise1
Level 1
Level 1
In response to Robert Thomas

‎02-05-2020 07:27 AM

I am looking at where these changes you mention would be made.  I only have the option to tick a box next to TLS.  I am looking at this post because I have been alerted to the microsoft 2020 ldap channel binding and signing requirements coming in March.  I want to be sure that I am ready for this change. 

0 Helpful
Customers Also Viewed These Support Documents