Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1036
Views
0
Helpful
10
Replies

Upgrading from 8.6 to 10.5 - LDAP Authentication will not work

Emily Sharrard
Level 1
Level 1

‎02-08-2016 09:57 AM - edited ‎03-19-2019 10:42 AM

We are upgrading from 8.6 to 10.5.  Ldap synchronization and authentication are enabled.  LDAP Syncronization works just ine.  LDAP Authentication works fine on 8.6 Call Manager, but fails on 10.5.  The configuration in 10.5 mirrors the configuration in 8.6

For example, I can log in using a network credential to my 8.6 CM Administration Page, however using the same network credential on 10.5 authentication page it fails.

My network credential is sync'd in Call Manager.  I have assigned myself every possible permission call manager offers.

What am I missing?

Labels:
0 Helpful
10 Replies 10

Jaime Valencia
Cisco Employee
Cisco Employee

‎02-08-2016 10:17 AM

What LDAP are you integrating to?

HTH

java

if this helps, please rate
0 Helpful

Emily Sharrard
Level 1
Level 1
In response to Jaime Valencia

‎02-08-2016 10:35 AM

Microsoft Active Directory.

0 Helpful

Emily Sharrard
Level 1
Level 1
In response to Emily Sharrard

‎02-08-2016 10:36 AM

Everything was copied over using PCD. I did validate ports and that SSL was checked. And of course the Authentication was enabled for users.
0 Helpful

Jaime Valencia
Cisco Employee
Cisco Employee
In response to Emily Sharrard

‎02-08-2016 10:44 AM

What version??

And did you have a secure LDAP integration???

Or using wildcard certs on 8.6??

HTH

java

if this helps, please rate
0 Helpful

Emily Sharrard
Level 1
Level 1
In response to Jaime Valencia

‎02-08-2016 10:54 AM

Which version of Active Directory? 6.1

I took a look in Cert Managment, looks like they are not self signed. 

0 Helpful

Venkatesh Perumal
Level 7
Level 7
In response to Emily Sharrard

‎02-08-2016 03:05 PM

do you get any error?

is the Cisco dirsync service activated, try restarting the dirsync service and see if it works. 

there could also be an issue with the wrong search-base entered.

0 Helpful

Emily Sharrard
Level 1
Level 1
In response to Venkatesh Perumal

‎02-09-2016 07:18 AM

"Log in Failed - invalid user name or password" We all get it. I am thinking it is a firewall rule or an ACL. I have tossed it over to that team to investigate.
0 Helpful

Jaime Valencia
Cisco Employee
Cisco Employee
In response to Emily Sharrard

‎02-09-2016 10:22 AM

Are you using TLS and/or wildcard certs??

HTH

java

if this helps, please rate
0 Helpful

Emily Sharrard
Level 1
Level 1
In response to Jaime Valencia

‎02-11-2016 01:38 PM

Figured out the issue.  Needed the FQDN versus IP address in the LDAP authenticaion configuration.

0 Helpful

Emily Sharrard
Level 1
Level 1

‎02-11-2016 01:37 PM

Figured out what the issue was. 10.5 was expecting the FQDN versus the IP address of the LDAP Servers.

0 Helpful
Customers Also Viewed These Support Documents