Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
8705
Views
15
Helpful
11
Replies

User login to CUCM problem with LDAP

Go to solution
Firasat.siddiqui_2
Level 1
Level 1

‎06-11-2013 12:19 PM - edited ‎03-16-2019 05:48 PM

Hello,

since i have integrated our CUCM 8.6.2 with LDAP, i am getting user information perfectly but when i am trying to acccess cucmuser access page, i am not able to login.

Please advise

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Ayodeji Okanlawon
VIP Alumni
VIP Alumni
In response to Firasat.siddiqui_2

‎06-12-2013 01:33 PM

Your search base is different for your LDAP authentication. Can you use the same seacrh base as the LDAP config and test again

Please rate all useful posts

"opportunity is a haughty goddess who waste no time with those who are unprepared"

Please rate all useful posts

View solution in original post

11 Replies 11

Go to solution
Ayodeji Okanlawon
VIP Alumni
VIP Alumni

‎06-11-2013 12:36 PM

Have you enabled LDAP authentication? Does the users have the role of standard ccm end user" assigned to them?

Please rate all useful posts

"opportunity is a haughty goddess who waste no time with those who are unprepared"

Please rate all useful posts
0 Helpful

Go to solution
Jaime Valencia
Cisco Employee
Cisco Employee

‎06-11-2013 12:37 PM

Are your users in the right OU to which you're pointing in the LDAP authentication config??

Are they CCMuser enabled?

HTH

java

if this helps, please rate

www.cisco.com/go/pdihelpdesk

HTH

java

if this helps, please rate

Go to solution
Firasat.siddiqui_2
Level 1
Level 1
In response to Jaime Valencia

‎06-11-2013 08:17 PM

LDAP Authentication is enabled, i have assigned role to users also my users are in correct OU, that is the reason i can see users in end user list.

it looks AD does not forwarding password field to CUCM, like i can see user detail except their password

Please advise,

0 Helpful

Go to solution
Dennis Mink
VIP Alumni
VIP Alumni
In response to Firasat.siddiqui_2

‎06-11-2013 08:26 PM

Is the box ticked under LDAP authentication?     also, what port you using?


Is your AD server seeing any failed authentications?

=============================
Please remember to rate useful posts, by clicking on the stars below. 

=============================

Please remember to rate useful posts, by clicking on the stars below.

0 Helpful

Go to solution
Jaime Valencia
Cisco Employee
Cisco Employee
In response to Firasat.siddiqui_2

‎06-11-2013 10:04 PM

The fact you see your users doesn't mean your authentication config should work, if you're pointing to the wrong OU under authentication, that could happen, also, CUCM does not sync pwds, it send the authentication request to LDAP. Thats why I'm asking if that is properly configured.

Sent from Cisco Technical Support iPad App

HTH

java

if this helps, please rate
0 Helpful

Go to solution
Firasat.siddiqui_2
Level 1
Level 1
In response to Jaime Valencia

‎06-12-2013 12:53 PM

Sorry don't understand, as i am perticularly defining specific OU and successfully see users those are part of that OU mean my integration is good correct ? and CUCM requesting user authentication for users belong to that OU to LDAP correct ?

Please confirm

0 Helpful

Go to solution
yahsiel2004
Level 7
Level 7
In response to Firasat.siddiqui_2

‎06-12-2013 12:57 PM

Are you certain that you're using the correct user name, alias etc, to log in?

HTH

Regards,

Yosh

HTH Regards, Yosh
0 Helpful

Go to solution
Ayodeji Okanlawon
VIP Alumni
VIP Alumni
In response to Firasat.siddiqui_2

‎06-12-2013 01:02 PM

Please send a screen capture of your CUCM LDAP config and your LDAP authentication config page

Please rate all useful posts

"opportunity is a haughty goddess who waste no time with those who are unprepared"

Please rate all useful posts
0 Helpful

Go to solution
Ayodeji Okanlawon
VIP Alumni
VIP Alumni
In response to Firasat.siddiqui_2

‎06-12-2013 01:33 PM

Your search base is different for your LDAP authentication. Can you use the same seacrh base as the LDAP config and test again

Please rate all useful posts

"opportunity is a haughty goddess who waste no time with those who are unprepared"

Please rate all useful posts

Go to solution
Jaime Valencia
Cisco Employee
Cisco Employee
In response to Firasat.siddiqui_2

‎06-12-2013 02:32 PM

If you see the users, that means your SYNC config is correct, and that's it.

Because you can see the users in CUCM doesn't mean in any way authentication will work.

LDAP authentication is a SEPARATE configuration, and you can still point anywhere else as it does not copy anything from the OUs you defined in sync.

Sorry don't understand, as i am particularly defining specific OU and successfully see users those are part of that OU mean my integration is good correct ? and CUCM requesting user authentication for users belong to that OU to LDAP correct ?

Yes, your sync config is OK, yes, CUCM is asking for authentication for those users, problem is, for authentication, you're pointing somewhere else where those users are not located.

So, coming back to my very first question in this thread:

Are your users in the right OU to which you're pointing in the LDAP authentication config??

The answer seems to be: no.

And that's the problem, either you point to the same OU, or to a parent OU for this to work.

HTH

java

if this helps, please rate

www.cisco.com/go/pdihelpdesk

HTH

java

if this helps, please rate
Customers Also Viewed These Support Documents