Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1594
Views
0
Helpful
7
Replies

UCM 7.x Command Line Interface

Go to solution
btedeschi
Level 1
Level 1

ā€Ž01-12-2012 07:12 AM - edited ā€Ž03-19-2019 04:13 AM

Running call manager 7x. I moved some AD objects around and i can no longer log into the administration page. I get the error, " log on failed - invalid user id or password." I moved the objects back, but i still cannot log in. I believe i need UCM to sync with my LDAP in order to resolve this, but i am not familiar with the CLI commands to do kick off the LDAP sync. Any help would be great!

Brett

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Gabriel Saavedra
Level 7
Level 7

ā€Ž01-12-2012 07:23 AM

Hi Brett,

You can use the "utils  reset_ui_administrator_password" CLI command to reset the administration page password.

Gabriel.

View solution in original post

0 Helpful

Go to solution
Jaime Valencia
Cisco Employee
Cisco Employee
In response to btedeschi

ā€Ž01-12-2012 07:54 AM

The accounts you created during the install for GUI are still there and that is unrelated to LDAP, you can use that one for login. The command only resets the built-in accounts, it's not related to end users privileges for ccmadmin. The command is for ui (User interface) you can review the CLI command guide if you want further info.

GUI accounts and CLI accounts are independent and exist in different places.

OS/CLI recovery procedure is different as it requires you to be local to the server to perform it since you need to use the DVD drive to confirm you're there.

HTH

java

If this helps, please rate

www.cisco.com/go/pdihelpdesk

HTH

java

if this helps, please rate

View solution in original post

0 Helpful
7 Replies 7

Go to solution
Gabriel Saavedra
Level 7
Level 7

ā€Ž01-12-2012 07:23 AM

Hi Brett,

You can use the "utils  reset_ui_administrator_password" CLI command to reset the administration page password.

Gabriel.

0 Helpful

Go to solution
Jaime Valencia
Cisco Employee
Cisco Employee
In response to Gabriel Saavedra

ā€Ž01-12-2012 07:30 AM

You don't do an LDAP sync via CLI, go to the LDAP config and you should have a sync now option there.

HTH

java

If this helps, please rate

www.cisco.com/go/pdihelpdesk

HTH

java

if this helps, please rate
0 Helpful

Go to solution
btedeschi
Level 1
Level 1
In response to Gabriel Saavedra

ā€Ž01-12-2012 07:31 AM

Gabriel,

Thanks for the feedback i may try that if i cannot get the ldap to sync. I thought local CUCM accounts were disabled once LDAP was enabled so i am not sure if this will work for me.

Brett

0 Helpful

Go to solution
Jaime Valencia
Cisco Employee
Cisco Employee
In response to btedeschi

ā€Ž01-12-2012 07:34 AM

That depends on what users you're talking about

End users are pulled from LDAP, you cannot longer create them via GUI once this is enabled.

app users are always created and held in the CUCM DB and are not related to LDAP.

End users if not found after an ldap sync will be marked as inactive and then be removed by the garbage disposal mechanism. If you get them back in the search OU you need to re-sync ldap to enable them again.

HTH

java

If this helps, please rate

www.cisco.com/go/pdihelpdesk

HTH

java

if this helps, please rate
0 Helpful

Go to solution
Gabriel Saavedra
Level 7
Level 7
In response to Jaime Valencia

ā€Ž01-12-2012 07:43 AM

Brett, if you know the application user used to log into the administration page then you can use the reset ui administrator password, because those users don't get inactive by the LDAP synch as Java told you already.

Gabriel.

0 Helpful

Go to solution
btedeschi
Level 1
Level 1
In response to Jaime Valencia

ā€Ž01-12-2012 07:48 AM

java,

I use AD accounts to access the administration site in cucm. i am not sure if the local administrator account still exisits on call manager. i know the OS administrator account still works because i can access the CLI using it.

if i were to run utils reset_ui_administrator_password command does it reset the OS admin login for CLI or an account local to the website gui log in?

Thanks!

0 Helpful

Go to solution
Jaime Valencia
Cisco Employee
Cisco Employee
In response to btedeschi

ā€Ž01-12-2012 07:54 AM

The accounts you created during the install for GUI are still there and that is unrelated to LDAP, you can use that one for login. The command only resets the built-in accounts, it's not related to end users privileges for ccmadmin. The command is for ui (User interface) you can review the CLI command guide if you want further info.

GUI accounts and CLI accounts are independent and exist in different places.

OS/CLI recovery procedure is different as it requires you to be local to the server to perform it since you need to use the DVD drive to confirm you're there.

HTH

java

If this helps, please rate

www.cisco.com/go/pdihelpdesk

HTH

java

if this helps, please rate
0 Helpful
Customers Also Viewed These Support Documents