Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
286
Views
0
Helpful
2
Replies

IPMA and Directory Search

pferraz
Level 1
Level 1

‎07-11-2005 09:30 AM - edited ‎03-15-2019 03:35 AM

Hi.

Having trouble searching the corporate directory through IPMA (gives error searching).

I have the Active Directory integration and I've configured the ldapconfigure.ini file, but I guess something must be wrong because it still doesn't work.

Can anyone give some pointers on where to search to find out what the error must be?

Thank you.

Labels:
0 Helpful
2 Replies 2

gogasca
Level 10
Level 10

‎07-11-2005 10:58 AM

1.The name is case sensitive i.e., LDAPConfig.ini

2.Fields need to be modified:

MANAGER_DN=

MANAGER_PASSWORD=

LDAP_URL=ldap://ldap.cisco.com:389

SEARCH_BASE=ou=active,ou=employees,ou=people,o=cisco.com

If directory anonymous searches are allowed, that means you don't need to give any value for

MANAGER_DN and MANAGER_PASSWORD. However, if anonymous searches are not allowed, create a new dummy user and give the DN/Password for this user here. Another thing here is that the DN should have the full pathname e.g., cn=Dummy User,ou=Users,o=cisco.com .

In most cases ANONYMOUS SEARCHES ARE NOT ALLOWED SO YOU NEED TO HAVE A MANAGER_DN and MANAGER_PASSWORD. Believe it or not,this can be ANY AD USER (and not, as the docs state, the CCMSysAdmin user) as long as they are within the search base you are using.

3. The ldap URL is based on your directory and is typically <http://hostname:389> Try IP address

4. The SEARCH_BASE is again based on the corporate directory schema.

This file needs to go under C:\ProgramFiles\Cisco\MA.

Here is a sample file that we use to work with Cisco Corporate Directory ...

##Directory Attributes####

FIRST_NAME=givenName

LAST_NAME=sn

COMMON_NAME=cn

TELEPHONE_NUMBER=telephoneNumber

USERID=sAMAccountName

DEPARTMENT=department

##CONNECTION DETAILS##

MAX_DIR_CONNECTION=2

INITIAL_DIR_CONNECTION=2

SEARCHSIZE=25

MAX_TIME_LIMIT=0

SEARCH_CN=true

MANAGER_DN=cn=IPMAAdmin, ou=CiscoAccounts, ou=AllAccounts, dc=cisco, dc=com

MANAGER_PASSWORD=pa55w0rd

LDAP_URL=ldap://dc.cisco.com:389

SEARCH_BASE=ou=AllAccounts,dc=cisco,dc=com

Keep us posted

-Gonz

0 Helpful

pferraz
Level 1
Level 1
In response to gogasca

‎07-12-2005 01:47 AM

Hi, first of all thanks for the reply.

I'm going to do some tests based on your information.

If I make some changes to the .ini file, can you tell me which service must I restart for the changes to take effect?

0 Helpful
Customers Also Viewed These Support Documents