Unity extends the AD schema correct? If so does it mark any attributes for inclusion in the global catalog? If so that would make for a heck of a lot of replication in a large enterprise. Anyone know the answer or know of any white papers?
Yes, I have checked out that whitepaper, but it does not say if it marks attributes for inclusion in the global catalog or not. It just syas that the schema is extended. If it were just extended that would be minimal replication, but if an attibute is marked for GC then all GC's resync all partitions of Active Directory. So in an enviroment where the is over 100,000 users this could be a very large problem.
A significant portion of the schema extensions that Unity makes do mark ismemberofpartialattributeset to true. Please feel free to review the LDIF files. They are available on the Unity CD1 in the \Schema\LdifScripts directory.
Yes, any schema change in the directory will cause the GCs to basically rebuild. Depending upon the number of DCs and especially GCs, it might take some time. We've worked with a few very large customers on this issue in order to minimize the impact, but the bottom is that an schema extension is a schema extension even though our schema is significantly smaller than the E2K schema. It doesn't matter.
There is a white paper forthcoming on the impact of Unity in Active Directory. It mainly talks about sizing and capacity planning. Another white paper will soon follow that one that focuses on troubleshooting problems with schema extensions in Active Directory.
As far as the attributes, I can take a look, or you can if you have the Unity LDF files, but there is a good number of them that get included in the GC replication. Look for the attributes and object that have "ismemberofpartialattributeset = TRUE." We also create a new object in AD called the Unity Location object. It replicates through the directory and enables Unity servers to become aware of other Unity servers.
We are quite aware of the issues that customers have to deal with regarding schema updates. For that reason, we try to keep schema changes limited between versions. In fact, we have an internal policy that only opens a brief window of time for schema change requests during major versions, which occur about once a year.
Please let me know if you have any additional questions.
You have reached the Cisco Logistics Support Center.. To Check Status of
your RMA, visit Product Returns & Replacements (RMA). Need help? Contact
us by Phone or Email. North Americas Phone: 1800 553 2447 Option 4
Email: firstname.lastname@example.org Europe Phone: +3...
The short answer is that you don't.... That isn't entirely true while at
the same time it kind of is, but for the most part you don't configure
the softkeys. You enable or disable them via TCL. Here is the long
answer. Be sure to read the whole thing or e...
Topology: IP Phone > Switches > Microsoft NPS setup to forward 802.1x
proxy to > ISE 2.1 patch 3 Authentication: EAP-TLS using Cisco MIC SANs
Phone Models 802.1X support? 802.1x flavor Addtl Comment EAP-MD5 EAP-TLS
Cisco 3905 Y Y N Cisco 6911 Y Y N Cisco ...