Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

CUCM LDAP Migration

Hi All,

I'm running CUCM 8.6x and UCCX 8.5x and I have cucm is integrated with MS AD.

The problem is my company is about to migrate all users is this AD to another AD (new ip address, new search base, but all users information remain the same). But, I don't know to make this happened without any damages to my system.

The simple question is how can I achieve it ?

- If I delete the configured AD integration, all the users will be marked deleted and will be cleaned up in 24 hours, which means I will lose all users information and theri associations. This is doom. Although, all the users info is the same (userid, firstname,lastname,etc....), but I don't think it will work that smooth. I'm I right?

- Worse, these users are also UCCX agent/supervisor in UCCX. If these users are cleaned up, this means my contact centers is dead. My configuration will be all gone. This is also doom.

Does anyone know or have experieces doing this ?

I want to change ip adddress and search base of my AD and want to maintain all the end users configurations and their configuration/associations, and UCCX agent stuff.

Please advise, I really don't know how to make this happen.

Thanks in advance,

  • IP Telephony
Everyone's tags (2)
New Member

Re: CUCM LDAP Migration

As long as the userid remains the same, it doesnt matter what you do to LDAP, the user accounts will remain and will not be deleted.

In other words, if you delete the LDAP directory config in UCM, this will mark all users for deletion.  If you then sync UCM to a new LDAP directory (even with a different IP or even different domain) all those users WHO HAVE THE SAME USERID will no longer be marked for deletion.

The easiest way to do this is just update the directory config inside the LDAP directory that is already configured in UCM, then you dont actually have to delete anything.

But again, having the same userid is the key.

New Member

CUCM LDAP Migration

Thanks for the responce,

Have you already tested this ?

To be more specific,

CUCM is integrated both to "Existing AD" and "NEW AD" together at the same time. . The user is in "Existing AD" or "New AD". Let's say, we move user A from Existing AD to New AD (Which means User A is no logner in "Existing AD" but appear in "New AD". It will work just fine after i click "perform sync now" in the ldap sync page ? Also in the uccx side ? All configurations are there ?


User A      ====>     User A

If i remember correctly, I uses to try this once. Everything looks okay. But I found out later that, If i make any changes for the migrated user in "AD", those new information didn't get synced to CUCM anymore. Even if the user status is active. I'm afraid this will be a problem.

Please advise,

New Member

Re: CUCM LDAP Migration

This should be fairly easy to test.  You can point to multiple LDAP directories at the same time.

UCCX gets its users from CUCM, so as long as you maintain the users in CUCM, there should be no effect on UCCX.

Yes I have tested it.  I work for a Cisco partner and we were migrating a division of a company to their own CUCM environment.  When we initially installed their new CUCM, they were pointed to the LDAP of the old company.  A couple weeks later they finally installed their own Microsoft AD environment and we repointed their CUCM to the new LDAP servers (new ip, new domain, everything) and as long as the userid was the same, the user was unaffacted in CUCM & CUC - none of their users were marked inactive.

This was done on version 9.1.2.

Same question was posted here with the same response

New Member

One of the customer had 4

One of the customer had 4 different LDAP directories point to the same Server with different search creteria, Once we deleted the 3 unwanted LDAP directories, Restarted DirSync Service. but later in 30 mins all the UCCX agents were affected and all the agents skill groups went back to default.

CUCM Version -

UCCX Version -

I had same issue. I changed

I had same issue. I changed the IP /  port of LDAP configuration on CUCM, than I performed the re-sync. After that, all agents on UCCX were affected, and their teams and skills were cleaned up to default configuration.

Anybody knows the root cause of this uccx problem?