You may have a different problem. CUCM has a user configured to lookup the authentication (user name and password) If this user has a problem, it will keep failing everyone.
Check the logs first in CUCM and see what the security is saying for the LDAP profile account, and also the user that is failing.
Also, check your Domain controller and see if there are any issues with the format that is coming from CUCM. If the user name has some odd characters or spaces or the password has unsupport characters, CUCM may not pass the info correctly to LDAP
actually, the authentication uses a service account called scv_UnifiedCM. and always works when the user password is typed in correctly.
The problem i am describing only related to the AD account lock out after one failed login.
I have done a packet capture on CUCM when simulating a failed login. It turns out that CUCM send the same authentication request to the AD server 3 times, causing it to lock. This would mean that the problem is caused by CUCM.
Please remember to rate useful posts, by clicking on the stars below.
The short answer is that you don't.... That isn't entirely true while at
the same time it kind of is, but for the most part you don't configure
the softkeys. You enable or disable them via TCL. Here is the long
answer. Be sure to read the whole thing or e...
Topology: IP Phone > Switches > Microsoft NPS setup to forward 802.1x
proxy to > ISE 2.1 patch 3 Authentication: EAP-TLS using Cisco MIC SANs
Phone Models 802.1X support? 802.1x flavor Addtl Comment EAP-MD5 EAP-TLS
Cisco 3905 Y Y N Cisco 6911 Y Y N Cisco ...
This document describe how DST changes and how time changes are
implemented in DST. Daylight Saving Time (DST) is the practice of
setting the clocks forward 1 hour from standard time during the summer
months, and back again in the fall, in order to make b...