Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Jabber login failed after AD password expires

Hello all,

We have CUCM 9.1.2 (integrated/authenticated via LDAP) IM&P 9 & latest Jabber client for windows.
I need to understand what is the procedure Jabber uses to login using AD credentials ? and how it will authenticate when user credential expires or update into AD ? e.g. If user update his password into AD, will the user be able to login into Jabber with new password immediately or we need to perform LDAP synchronization in CUCM first ?

From CUCM 9 SRSND " Synchronizing Mechanism " chapter, it seems we need to wait for CUCM to re-synch at next schedule time & minimum time for re-synch is 6hours.

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/srnd/9x/uc9x/directry.html#wp1045229

"Subsequently when changes are made in the corporate directory, the synchronization from Microsoft Active Directory occurs as a full re-synchronization at the next scheduled synchronization period."

Can any body share if there is any work around for this ? Because admins can not do manual synch every time there user update passwords & user also can not wait for 6hours to be able to login again.

Regards,

 

1 REPLY
Cisco Employee

Sync does not mean

Sync does not mean authenticate. Don't confuse what each one does.

You need to read AUTHENTICATION from the SRND, not synchronization.

http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/srnd/9x/uc9x/directry.html#wp1045365

When you try to authenticate, in that moment the BIND operation is performed.

HTH

java

if this helps, please rate

www.cisco.com/go/pdi
207
Views
0
Helpful
1
Replies
CreatePlease to create content