Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

CTS-MAN integration with LDAP/Exchange

Hi guys

just wanted to confirm if its ok to have the LDAP user account and the tpsuper user ( the CTM user who has full access on all the TP rooms mailboxes) the same user with the following privileges in the domain

member of  Domain Admin Group, Enterprise Admin Group and the MS Exchange Servers ?

or it must be diffrent user accounts ?

i did try it with prequalification tool and all the results was successful but i am not sure if their is any technical requirements behind it or not

Thank you


Re: CTS-MAN integration with LDAP/Exchange

as long as it has full access to those rooms is ok, in Exchange by default Domains admin inherit no read access and no sent as for users

but if prequal took is ok you should be good

let us know

you can confirm by logging into the room calendar using ctm account via OWA


Re: CTS-MAN integration with LDAP/Exchange


thanks for your answer, just to let you know

one user account can work for both LDAP and exchange

the user for LDAP only need to be member of domain users group

for exchange has to have full access or read on all of the TP room accounts

tried it with pre-qual tool worked fine and a colleague who done it in production confirmed it to me

by the way why you need send as ?

Thank you

Cisco Employee

Re: CTS-MAN integration with LDAP/Exchange

You don't need send as/receive as rights on the account that CTS-Man uses for authentication to Exchange; as stated, it only needs to be a member of the Domain users group.  We have seen customers add this account to the domain admins group, which does use implicit denies to the mailstore, such as send as/receive as, so it's simply something to be mindful of.  As stated, as long as the account is a member of the Domain Users group, and is granted either read only or full access rights to the room mailboxes, all should work as expected.

New Member

Re: CTS-MAN integration with LDAP/Exchange

That helped.

CTS-Man unfortunately is a pain as Unity VM system is when dealing with MS products