Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
8961
Views
5
Helpful
6
Replies

LDAP Directory Error

Go to solution
phamvinhdat
Level 3
Level 3

‎06-20-2011 12:40 PM - edited ‎03-19-2019 03:08 AM

I just set up Windows 2003 domain controller to use for LDAP Directory with CUCM 8.5, but I am running into error:

Error while Connecting to ldap://xxx.xxx.xxx.xxx:389, null

What should I checked for from either CUCM or Windows 2003? I try to look into real time log but could not find anything on this error.

Thanks.

Dat Pham

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jonathan Schulenberg
Hall of Fame
Hall of Fame
In response to phamvinhdat

‎06-20-2011 06:53 PM

Two thoughts:

  1. What are you using for a Search Base string? The default Users container violates a LDAP rule because you address it using CN= while a normal OU container would be OU=
    Examples:
    • CN=Users,DC=domain,DC=com
    • OU=People,DC=domain,DC=com
  2. If you use another LDAP tool such as AD Explorer and connect with the same user credentials CUCM has, are you able to read user objects and attributes in the new OU you created? Perhaps the inherited permissions are denying access to the new container.

View solution in original post

6 Replies 6

Go to solution
Jonathan Schulenberg
Hall of Fame
Hall of Fame

‎06-20-2011 01:10 PM

If the Windows 2003 server is a Global Catalog server the port would be 3268, not 389. Have you checked this?

0 Helpful

Go to solution
phamvinhdat
Level 3
Level 3
In response to Jonathan Schulenberg

‎06-20-2011 03:56 PM

I tried with the default Users OU and it is working ok, but not the newly created OU. I also have tried port 3268, and it still the same issue. I will have to try some different OU and see how that goes.

Thanks.

Dat Pham

0 Helpful

Go to solution
Jonathan Schulenberg
Hall of Fame
Hall of Fame
In response to phamvinhdat

‎06-20-2011 06:53 PM

Two thoughts:

  1. What are you using for a Search Base string? The default Users container violates a LDAP rule because you address it using CN= while a normal OU container would be OU=
    Examples:
    • CN=Users,DC=domain,DC=com
    • OU=People,DC=domain,DC=com
  2. If you use another LDAP tool such as AD Explorer and connect with the same user credentials CUCM has, are you able to read user objects and attributes in the new OU you created? Perhaps the inherited permissions are denying access to the new container.

Go to solution
phamvinhdat
Level 3
Level 3
In response to Jonathan Schulenberg

‎06-21-2011 11:05 AM

Jonathan,

Thanks for the pointer, LDAP Directory is working good now.

Dat

0 Helpful

Go to solution
asandborgh
Level 4
Level 4
In response to Jonathan Schulenberg

‎09-24-2012 03:43 PM

5 points Jonathan.  Logging in via AD Explorer also helped clarify what the distinguished name and search base should be in exact format since I could see them in the actual AD.

Thanks!!!

0 Helpful

Go to solution
Tyler Durden
Level 1
Level 1
In response to asandborgh

‎11-16-2012 01:44 AM

Ad Explorer was the only way I could find out how to get the LDAP working with my CUCM!

Thanks, great thread!!

0 Helpful
Customers Also Viewed These Support Documents
Top