LDAP directory setup

Similar documents
LDAP directory setup

LDAP Directory Setup. About LDAP Directory Setup

LDAP Directory Configuration

Import Users From LDAP Directory

LDAP Directory Integration

LDAP Directory Integration

You can use the following directory servers with Cisco Jabber:

Users. LDAP Synchronization Overview

Configuring Cisco Unified Communications Manager Directory Integration

Integrate with Directory Sources

End User Setup. About End User Setup

Active Directory Synchronization Tool Architecture and Design

Realms and Identity Policies

This chapter provides information about managing end user directory information.

Active directory configuration for Cisco Unified Personal Communicator

Configure Cisco Directory Connector

Unity Connection Version 10.5 SAML SSO Configuration Example

User/Phone Add Configuration

INTEGRATING WITH LDAP DIRECTORIES

Unified Communications Manager Version 10.5 SAML SSO Configuration Example

Deploy Cisco Directory Connector

CLI users are not listed on the Cisco Prime Collaboration User Management page.

Configure Directory Integration

Integrate with Directory Sources

Associate Users with Endpoints

Realms and Identity Policies

User Management. Jabber IDs

User Management in Resource Manager

Digest Authentication Setup for SIP Trunks

Realms and Identity Policies

Installing the Cisco Unified CallManager Customer Directory Plugin Release 4.3(1)

Application User Configuration

VMware Identity Manager Administration

Configure IM Addressing Scheme

Manage Certificates. Certificates Overview

User Management. Jabber IDs

Adding Users. Adding Users CHAPTER

Intercluster directory URI

Quick Reference Guide. Online Courier: File Transfer Protocol (FTP) Signing On. Using FTP Pickup

Enterprise Groups. Enterprise Groups Overview

Application User Setup

Configure Enterprise Groups

Directory Integration with VMware Identity Manager

Directory Overview. Cisco Unified Communications Manager System Guide, Release 10.0(1) OL

Configuring Applications to Exploit LDAP

ADFS Authentication and Configuration January 2017

Directory Integration

FastPass Password Manager

Identity Policies. Identity Policy Overview. Establishing User Identity through Active Authentication

Configuring Cisco TelePresence Manager

Configure the IM and Presence Service

How to Configure Authentication and Access Control (AAA)

Contact Source. Directory Servers

Customer Premise Installation Guide. Active Directory Synchronization. Apptix Live Support:

IM and Presence Service Network Setup

Manage SAML Single Sign-On

Cisco Jabber for Mac Installation and Configuration Guide 9.2(1)

New and Changed Features

Overview. ACE Appliance Device Manager Overview CHAPTER

Application Users and End Users

Cloud Attached Storage

Embedded Web Server. Administrator's Guide

Manage End Users. End User Overview. End User Management Tasks. End User Overview, on page 1 End User Management Tasks, on page 1

CLI users are not listed on the Cisco Prime Collaboration User Management page.

Backup the System. Backup Overview. Backup Prerequisites

akkadian Global Directory 3.0 System Administration Guide

Configure Intercluster Lookup Service

Tenant Administration

Credential Policy CHAPTER

Configuring SSL. SSL Overview CHAPTER

Operating and Configuring Cisco SPA

SAML-Based SSO Solution

Security Provider Integration LDAP Server

The Group Call Pickup feature and Directed Call Pickup feature do not work with hunt lists.

ShoreTel Active Directory Import Application

Migrating application users and passwords with Password Manager

Managing Security Certificates in Cisco Unified Operating System

Troubleshooting Exchange Calendaring Integrations

Voice-Messaging Ports Security Setup

Proxy POP3S. then authentication occurs. POP3S is for a receiving . IMAP4S. and then authentication occurs. SMTPS is for sending .

Tenant Administration

Managing Administrative Settings for Cisco DMS Components and Users

Cisco Unified Communications Domain Manager manual configuration

Troubleshooting Single Sign-On

Configuring SSL CHAPTER

Configuring SSL. SSL Overview CHAPTER

Managing External Identity Sources

Obtaining the LDAP Search string (Distinguished Name)?

Cisco VCS Authenticating Devices

Cisco Unity Express 8.0 Voic System User s Guide for Advanced Features

Message Networking 5.2 Administration print guide

ACS 5.x: LDAP Server Configuration Example

Publishing and Subscribing to Cloud Applications with Data Integration Hub

Cisco TelePresence Device Authentication on Cisco VCS

CUCM Directory Synchronization FAQ

Chat and Presence. Browser Click to Call

Troubleshooting Single Sign-On

Survivable Remote Site Telephony Configuration

Administration Of Active Directory Schema Attribute Greyed Out

Vovici Enterprise System Administration Guide

Transcription:

LDAP directory setup This chapter provides information to configure the LDAP directory. The LDAP direcotry configuration takes place in these related windows: LDAP System Configuration LDAP Directory LDAP Authentication LDAP Filter Configuration For additional information, see topics related to the directory, application users, and end users in the Cisco Unified Communications Manager System Guide. About LDAP directory setup, page 1 LDAP directory settings, page 1 About LDAP directory setup In Cisco Unified Communications Manager Administration, use the System > LDAP > LDAP Directory menu path to configure LDAP directories. In the LDAP Directory window, you specify information about the LDAP directory; for example, the name of the LDAP directory, where the LDAP users exist, how often to synchronize the data, and so on. Before you begin Before you can synchronize the LDAP directory, you must activate the Cisco DirSync service. For information about how to activate services, see the Cisco Unified Serviceability Administration Guide. Changes to LDAP Directory information and LDAP Authentication settings are possible only if synchronization from the customer LDAP directory is enabled in the Cisco Unified Communications Manager Administration LDAP System Configuration window. LDAP directory settings The following table describes the LDAP directory settings. 1

LDAP directory settings LDAP directory setup Table 1: LDAP directory settings LDAP Directory Information LDAP Configuration Name LDAP Manager Distinguished Name LDAP Password Confirm Password LDAP User Search Base LDAP Custom Filter Enter a unique name (up to 40 characters) for the LDAP directory. Enter the user ID (up to 128 characters) of the LDAP Manager, who is an administrative user that has access rights to the LDAP directory in question. Enter a password (up to 128 characters) for the LDAP Manager. Reenter the password that you provided in the LDAP Password field. Enter the location (up to 256 characters) where all LDAP users exist. This location acts as a container or a directory. This information varies depending on customer setup. Select an LDAP custom filter from the drop-down list. The LDAP filter filters the results of LDAP searches. LDAP users that match the filter get imported into the Cisco Unified Communications Manager database, but LDAP users that do not match the filter do not get imported. The default value is <None>. This value applies a default LDAP filter that is specific to the LDAP server type. These are the default LDAP filters: Microsoft Active Directory (AD):(&(objectclass=user)(!(objectclass=Computer)) (!(UserAccountControl:1.2.840.113556.1.4.803:=2))) iplanet or Sun One LDAP Server:(objectclass=inetOrgPerson) OpenLDAP:(objectclass=inetOrgPerson) Microsoft Active Directory Application Mode (ADAM):(&(objectclass=user) (!(objectclass=computer))(!(msds-useraccountdisabled=true))) For more information about LDAP filters, see the LDAP custom filter setup. LDAP Directory Synchronization Schedule Perform Sync Just Once If you want to perform synchronization of the data in this LDAP directory with the data in the Cisco Unified Communications Manager database only once, check this check box. 2

LDAP directory setup LDAP directory settings Perform a Re-sync Every Next Re-sync Time (YYYY-MM-DD hh:mm) If you want to perform synchronization of the data in this LDAP directory with the data in the Cisco Unified Communications Manager database at a regular interval, use these fields. In the left field, enter a number. In the drop-down list box, choose a value: hours days weeks months Cisco Unified Communications Manager can synchronize directory information every 6 hours, which is the minimum value allowed for this field. Note This field remains active only if you do not check the Perform Sync Just Once check box. Specify a time to perform the next synchronization of Cisco Unified Communications Manager directory data with this LDAP directory. Use a 24-hour clock to specify the time of day. For example, 1:00 pm equals 13:00. Standard User s To Be Synchronized Cisco Unified Communications Manager User s User ID Middle Name LDAP User s samaccountnameoruid (drop-down list box) For the LDAP User field, choose one of the following values: middlename initials Manager ID manager 3

LDAP directory settings LDAP directory setup Phone Number (drop-down list box) For the LDAP User field, choose one of the following values: telephonenumber ipphone Directory URI First Name Last Name Department Mail ID (drop-down list box) givenname sn departmentordepart mentnumber (drop-down list box) For the LDAP User field, choose one of the following values: Note Note msrtcsip-primaryuseraddress mail None The msrtcsip-primaryuseraddress option is only available if you choose Microsoft Active Directory as the LDAP Server Type in the LDAP System Configuration window. The user portion of a directory URI is case sensitive. Whatever case the directory URI has in LDAP will be imported into Cisco Unified Communications Manager. For compatibility with third party call control systems, Cisco recommends using lower case for directory URIs. For the LDAP User field, choose one of the following values: mail samaccountname uid 4

LDAP directory setup LDAP directory settings Custom User s To Be Synchronized Custom User Name LDAP Attribute Cisco Unified Communications Manager allows you to synchronize LDAP directory attributes that are not included among the defaults for the Standard User s to be Synchronized. Using Custom User s, you can synchronize LDAP attributes to a customized field that gets saved in the Cisco Unified Communications Manager database. In the Custom User text box, enter a name for the customized field that you want to create. The custom user field can contain up to 64 alphanumeric characters, including spaces. Cisco Unified Communications Manager saves the new customized field in the database. You can create up to five custom user fields. Click the (+) button to add additional rows on which you can create new fields. In the LDAP attribute field, enter a valid LDAP attribute that exists in your LDAP directory. The maximum field length is 128 characters. LDAP Server Information Host Name or IP Address for Server Enter the host name or IP address of the server where the data for this LDAP directory resides. 5

LDAP directory settings LDAP directory setup LDAP Port Enter the port number on which the corporate directory receives the LDAP requests. You can only access this field if LDAP authentication for end users is enabled. The default LDAP port for Microsoft Active Directory and for Netscape Directory specifies 389. The default LDAP port for Secured Sockets Layer (SSL) specifies 636. How your corporate directory is configured determines which port number to enter in this field. For example, before you configure the LDAP Port field, determine whether your LDAP server acts as a Global Catalog server and whether your configuration requires LDAP over SSL. Consider entering one of the following port numbers: LDAP Port when LDAP server is not a Global Catalog server: 389 When SSL is not required. (This port number specifies the default that displays in the LDAP Port field.) 636 When SSL is required. (If you enter this port number, make sure that you check the Use SSL check box.) LDAP Port when LDAP server Is a Global Catalog server: 3268 When SSL is not required. 3269 When SSL is required. (If you enter this port number, make sure that you check the Use SSL check box.) Tip Your configuration may require that you enter a different port number than the options that are listed in the preceding bullets. Before you configure the LDAP Port field, contact the administrator of your directory server to determine the correct port number to enter. Use SSL Add Another Redundant LDAP Server Perform Full Sync Check this check box to use Secured Sockets Layer (SSL) encryption for security purposes. Note If LDAP over SSL is required, the corporate directory SSL certificate must be loaded into Cisco Unified Communications Manager. The Cisco Unified Communications Operating System Administration Guide documents the certificate upload procedure in the Security chapter. Click this button to add another row for entry of information about an additional server. Click this button to perform a full directory sync. While the directory is synchronizing, the button name changes to Cancel Full Sync. You can click the Cancel Full Sync button to cancel the sync. In addition to the user fields that appear in Cisco Unified Communications Manager Administration, the Microsoft Active Directory Application Mode user fields that are described in the following table also get synchronized. 6

LDAP directory setup LDAP directory settings Table 2: Additional synchronized Microsoft Active Directory Application Mode user fields Cisco Unified Communications Manager User s UniqueIdentifier Pager Mobile Title Homephone OCSPrimaryUserAddress LDAP User s ObjectGUID pagerorpagertelephonenumber mobileormobiletelephonenumber title homephoneorhometelephonenumber msrtcsip-primaryuseraddress 7

LDAP directory settings LDAP directory setup 8

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback