I have an enterprise client who we are migrating to voice. We are using LDAP sync and authentication. When we did the core, users selected for sync and authentication worked well. But here is the problem.
I just set up the preproduction remote site. This site is part of different domain but under the same AD forest.
core site --> domain1.something.com
remote site --> domain2.something.com
User for ldap sync and authentication in CUCM configuration is admin1 within domain1. (like i said, this part worked).
When i added the new directory for the differing site domain2, I used the same user1 for ldap sync and everything worked well. User1 has rights to read from domain2.
However when I changed the authentication piece to move from DC=domain1,DC=something,DC=com to just DC=somthing,DC=com (the top of the forest) authentication breaks on domain1 and just does not work on domain2.
Is there any special rights that user1 need or has to have? Enterprise admin perhaps?