ā01-31-2012 03:07 AM - edited ā03-19-2019 04:19 AM
Hi,
We have a problem in a customer. The users cannot access to ccmuser. The CUCM softare version is 6.1.2.
When an user tries to access to ccm user has the next message:
Failed to connect to LDAP Server
I have made a full Syncronitation CUCM - LDAP but the problem continues.
There isnĀ“t problem of connectivity between both servers.
Which could it be the problem?
Thanks for your help,
Regards,
David
ā01-31-2012 07:05 AM
Is the LDAP authentication properly set up???
One thing is the LDAP sync to bring users and a different thing the LDAP authentication.
HTH
java
If this helps, please rate
www.cisco.com/go/pdihelpdesk
ā02-01-2012 02:55 AM
Hi,
Yes, the CUCM server brings the users of the LDAP, and this users validates with the LDAP. It has been working OK, but at this moment in al the users when try to access to ccmuser has the next message:
Failed to connect to LDAP Server
Thanks for your help,
Regards,
David
ā02-01-2012 08:43 AM
If you're 100% sure your LDAP sync and authentication configs are correct then this might be a network issue, make sure nothing has changed in the routing path and that anything is blocking this.
If you do a sync and it doesn't show any errors I would still suspect your LDAP auth config is wrong.
HTH
java
If this helps, please rate
www.cisco.com/go/pdihelpdesk
ā03-21-2012 09:17 AM
Hi,
Yesterday night we restart the CUCM cluster, there are 2 servers.
Now, we can access to ccmuser to https://SUBSCRIBER IP ADDRESS/ccmuser , but we canĀ“t access to https://PUBLISHER IP ADDRESS/ccmuser, we have the next message:
Failed to connect LDAP server
Why can we connect to subsecriber server and we canĀ“t connect to publisher server?
All the services are actives in both servers.
Thanks for your help,
Regards,
David
ā02-01-2012 04:14 PM
Are they accessing ccmuser from a subscriber perhaps, and not the publisher?
Check connectivity from all your CM nodes to all your LDAP hosts on TCP/389 or if it's LDAPS then your LDAPS port.
Check the LDAP authentication user can bind to all your LDAP servers using an LDAP browser.
ā03-13-2012 05:25 AM
Hi Nicholas,
Yes, all you tell me is correct.
The CUCM make a correct syncronitation, if in the LDAP server is created an user, the user appears correctly in the CUCM.
There is a server for sincronitation and there is a server for aunthenticacion.
How can I test if the CUCM is trying to aunthenticate to the LDAP server of aunthentication?
The customer indicates me that they donĀ“t see aunthetication trying logs in the server from CUCM server
Is there any traces to test it?
I have been looking "Cisco DirSync" traces but I donĀ“t see nothing about it.
Thanks for your help,
Regards,
David Lozano
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide