06-11-2013 12:19 PM - edited 03-16-2019 05:48 PM
Hello,
since i have integrated our CUCM 8.6.2 with LDAP, i am getting user information perfectly but when i am trying to acccess cucmuser access page, i am not able to login.
Please advise
Solved! Go to Solution.
06-12-2013 01:33 PM
Your search base is different for your LDAP authentication. Can you use the same seacrh base as the LDAP config and test again
Please rate all useful posts
"opportunity is a haughty goddess who waste no time with those who are unprepared"
06-11-2013 12:36 PM
Have you enabled LDAP authentication? Does the users have the role of standard ccm end user" assigned to them?
Please rate all useful posts
"opportunity is a haughty goddess who waste no time with those who are unprepared"
06-11-2013 12:37 PM
Are your users in the right OU to which you're pointing in the LDAP authentication config??
Are they CCMuser enabled?
HTH
java
if this helps, please rate
www.cisco.com/go/pdihelpdesk
06-11-2013 08:17 PM
LDAP Authentication is enabled, i have assigned role to users also my users are in correct OU, that is the reason i can see users in end user list.
it looks AD does not forwarding password field to CUCM, like i can see user detail except their password
Please advise,
06-11-2013 08:26 PM
Is the box ticked under LDAP authentication? also, what port you using?
Is your AD server seeing any failed authentications?
=============================
Please remember to rate useful posts, by clicking on the stars below.
=============================
06-11-2013 10:04 PM
The fact you see your users doesn't mean your authentication config should work, if you're pointing to the wrong OU under authentication, that could happen, also, CUCM does not sync pwds, it send the authentication request to LDAP. Thats why I'm asking if that is properly configured.
Sent from Cisco Technical Support iPad App
06-12-2013 12:53 PM
Sorry don't understand, as i am perticularly defining specific OU and successfully see users those are part of that OU mean my integration is good correct ? and CUCM requesting user authentication for users belong to that OU to LDAP correct ?
Please confirm
06-12-2013 12:57 PM
Are you certain that you're using the correct user name, alias etc, to log in?
HTH
Regards,
Yosh
06-12-2013 01:02 PM
Please send a screen capture of your CUCM LDAP config and your LDAP authentication config page
Please rate all useful posts
"opportunity is a haughty goddess who waste no time with those who are unprepared"
06-12-2013 01:24 PM
06-12-2013 01:33 PM
Your search base is different for your LDAP authentication. Can you use the same seacrh base as the LDAP config and test again
Please rate all useful posts
"opportunity is a haughty goddess who waste no time with those who are unprepared"
06-12-2013 02:32 PM
If you see the users, that means your SYNC config is correct, and that's it.
Because you can see the users in CUCM doesn't mean in any way authentication will work.
LDAP authentication is a SEPARATE configuration, and you can still point anywhere else as it does not copy anything from the OUs you defined in sync.
Sorry don't understand, as i am particularly defining specific OU and successfully see users those are part of that OU mean my integration is good correct ? and CUCM requesting user authentication for users belong to that OU to LDAP correct ?
Yes, your sync config is OK, yes, CUCM is asking for authentication for those users, problem is, for authentication, you're pointing somewhere else where those users are not located.
So, coming back to my very first question in this thread:
Are your users in the right OU to which you're pointing in the LDAP authentication config??
The answer seems to be: no.
And that's the problem, either you point to the same OU, or to a parent OU for this to work.
HTH
java
if this helps, please rate
www.cisco.com/go/pdihelpdesk
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide