Integrating LDAP in read only (keep CM in DC directory)

Unanswered Question
Oct 9th, 2008
User Badges:

Is it possible to integrate CM6.11 with an Active Directory environment for authentication purposes and creating a directory, but with a read only account and keeping the CM configuration in DC directory?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
sbilgi Wed, 10/15/2008 - 11:08
User Badges:
  • Silver, 250 points or more

Yes you can integrate CM6.11 with an Active Directory environment for authentication purposes. The Cisco CallManager uses a Lightweight Directory Access Protocol (LDAP) to store user information (authentication and authorization information) for CallManager applications. This directory (the DC directory) works in conjunction with Cisco CallManager.

jeff.garvas Wed, 10/15/2008 - 11:29
User Badges:

But can (and how do you) set it up so that what call manager wants to write into LDAP is done locally in DC directory, and the remote LDAP is used solely for user authentication and creating a corporate dialing directory?

I want to avoid writing into the corporate LDAP directory at all.

James Hawkins Wed, 10/15/2008 - 12:08
User Badges:
  • Gold, 750 points or more

DC directory no longer exists in CUCM6.x (or 5.x for that matter).

Unlike CM4.x the Linux based versions do not write anything to an external LDAP directory.

They can be configured to import user accounts from an LDAP directory such as AD but it strictly a one way process.

Read the LDAP Directory Integration chapter of the SRND for more details.


This Discussion