Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
394
Views
0
Helpful
1
Replies

CUCM 8.5 Migrating users from existing LDAP server to new LDAP Server

cspady2009
Level 1
Level 1

‎07-25-2013 10:26 AM - edited ‎03-19-2019 07:03 AM

Hello

We have to migrate users from our current Ldap Server located on our network to a new Ldap Server located on a different network. CUCM 8.5 is currently configured to synch and authenticate user accounts with our current Ldap Servers.

Questions

Are we able to connect CUCM 8.5 to two LDAP servers that are located on different domains, without using an ADAM Server ?

Are we able to delay or disable the garbage process that will delete inactive user accounts,  we have to keep all user accounts located on the current Ldap server  until the project is complete and we are only connected to the new Ldap servers. (Unfortunately the user account move will be a slow process maybe 50 users a night)

Will user accounts maintain their device associations after being moved/copied to the new Ldap Server?

How will this migration potential affect our users, Users will still authenticate with the current Ldap server until all account are moved/copied over then we will configure the new Ldap Server  for authentication

Can anyone can offer helpful hints, caveats or best practices

Thank You

Labels:
0 Helpful
1 Reply 1

Jonathan Schulenberg
Hall of Fame
Hall of Fame

‎07-25-2013 01:25 PM 

Are we able to connect CUCM 8.5 to two LDAP servers that are located on different domains, without using an ADAM Server ?

Yes as long as they are in the same tree and forest. Note that your username attribute must be unique across domains in the tree. Additional constraints exist if the domains are in different trees of the forest.

Are we able to delay or disable the garbage process that will delete inactive user accounts

No. It will run at 03:00 local server time nightly.

Will user accounts maintain their device associations after being moved/copied to the new Ldap Server?

Only if the objectGUID remains the same on the object after it is moved. Once the object is imported, the GUID is stored in the database. This allows changes to the username, last name, etc. from generating a new user object as opposed to modifying the existing one.

Please remember to rate helpful responses and identify helpful or correct answers.

0 Helpful
Customers Also Viewed These Support Documents