CUCM AD Authentication -- Back-out?

Unanswered Question
Mar 17th, 2010

CUCM 6.1(4), currently importing user account info from the corporate AD.

We would like to enable AD for authentication.

My question is:  If we do this, but need to back out for whatever reason, are the original CUCM-based passwords left intact and reactivated?

TIA for any advice!!!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
David Hailey Wed, 03/17/2010 - 09:09

This should be the case as LDAP passwords are not stored in CUCM once you enable authentication.  Instead, a BIND operation is used to ensure that the credentials passed to CUCM are validated against LDAP.  So, the data in the CUCM DB is not overwritten and in fact, End User PINs are still validated against the CUCM when you do LDAP authentication.  I can validate this in my lab if I have a chance later today.  In the meantime, you could easily use BAT to reset all user passwords to default value if you found that you had run into an issue.


Please rate helpful posts!


This Discussion

Related Content