Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1434
Views
0
Helpful
8
Replies

CallManager Directory, Multi-Tenant Setup

benhanson
Level 1
Level 1

‎03-09-2004 03:55 PM - edited ‎03-13-2019 04:12 AM

I'm using CallManager 3.3 with Non-AD ldap. I'm about to add a separate company's phone system to mine, but would like to keep as much separation as possible. Currently I'm separating devices and call plans via partitions and calling search spaces. Is there a way to subdivide the directory space?

Labels:
0 Helpful
8 Replies 8

munatara
Cisco Employee
Cisco Employee

‎03-09-2004 04:38 PM

If you are using the DC Directory you won't be able to do that.

0 Helpful

benhanson
Level 1
Level 1
In response to munatara

‎03-09-2004 04:40 PM

The 2nd tenant uses AD, and I will be moving to AD in the near future. Is it possible if using AD for directory services?

0 Helpful

c-charlebois
Level 3
Level 3
In response to benhanson

‎03-10-2004 08:53 AM

Th is is a complex answer. First of all, it is definitely possible. I've set it up on our production system. But it wasn't easy and we cannot integrate our CCM Directory with AD, athough we have no reason to want to.

The important thing to remember is that the Corperate Directory just requests a XML page using an ASP call. The default setup builds the XML Directory page dynamically from the DC Directory LDAP server, using a LDAP ASP tool that Cisco provides. This tool is limited in that it will only search on first name, last name, and phone number. In order to get it to work in a Mulit-tenant environment I had to find a more flexible LDAP utility that could be accessed from an ASP page. I found one at www.ldapservices.com, although it wasn't free (free trial, though).

With that utility, I rewrote the ASP pages, creating a seperate page for each tenant, which added a hard-coded search criteria of 'Department' to all LDAP search, thus limiting each tenant to only seeing entries in their 'Department'.

Now, it would be possible to redirect that LDAP search to a seperate AD server in order to get a directory. However, this would only generate a directory from AD, it does not create true AD intergration in terms of device association or CTI permissions. I don't see how you can integrate AD in a multi-tenant system unless you combine all tenants into a single AD structure.

0 Helpful

benhanson
Level 1
Level 1
In response to c-charlebois

‎03-11-2004 05:02 PM

Would it be possible to have a different xmldirectory.asp that the other groups phones would point to? Is it possible to have the default xmldirectory.asp point to the ldap service on the server, but a second xmldirectory.asp that points to an AD server?

0 Helpful

c-charlebois
Level 3
Level 3
In response to benhanson

‎03-12-2004 10:31 AM

Definitely. That is what I was talking about in the last paragraph. However, it involves using a third-party LDAP search tool and re-writing the xmldirectorylist.asp page.

0 Helpful

adignan
Level 8
Level 8
In response to c-charlebois

‎03-12-2004 02:21 PM

Berbee has an xml app for this that pulls this info from AD. ipt-apps@berbee.com

0 Helpful

adignan
Level 8
Level 8
In response to c-charlebois

‎03-12-2004 02:22 PM

Berbee has an xml app for this that pulls this info from AD. ipt-apps@berbee.com

0 Helpful

Aaron Harrison
VIP Alumni
VIP Alumni
In response to benhanson

‎03-26-2010 10:34 AM

Hi

You could run a few instances of my XML directory in where you need AD integration (by setting up a custom directories URL for those phones), and leave the default directory available to whoever you like.

https://supportforums.cisco.com/message/3026015#3026015

Regards

Aaron

Aaron Please remember to rate helpful posts to identify useful responses, and mark 'Answered' if appropriate!
0 Helpful
Customers Also Viewed These Support Documents