I can tell you about our experience. I work on a Cisco partner and we need to solve that problem and like you say It's not supported directly but we solve this issue on one of our clients making a propietary script.
Cisco support ldap integration with MS LDS (or ADAM) wich acts like a proxy for the MS ADs. We create a replicated database on LDS. So, one DB look at AD and the other look at the CUCM. Then with our script we copied one DB on the other but change one the field. In our case, we took the mail field, strip "@domain.com" and we paste on the employeeNumber field on the second DB. Then we integrated CUCM and LDAP with EmployeeNumber like userID.
Because LDS and AD synchronize using another filed, like GUID or something like that, we can Authenticate without any problem because when an authentication request form CUCM come to LDS db2, it looks the GUID and go directly to AD.
AD -- (guid) --- [db1 LDS] --script running on MS LDS --- [db2 LDS] -- (employeeNumber) -- CUCM
CUCM -- (employeeNumber) --- [db2 LDS] --- (guid) -- AD
Because CUCM support LDS integration we haven't any problem with TAC support because they only see an LDAP integration with LDS using EmployeeNumber.
The only problem here is you lose the real EmployeeNumber of AD.
You have reached the Cisco Logistics Support Center.. To Check Status of
your RMA, visit Product Returns & Replacements (RMA). Need help? Contact
us by Phone or Email. North Americas Phone: 1800 553 2447 Option 4
Email: email@example.com Europe Phone: +3...
The short answer is that you don't.... That isn't entirely true while at
the same time it kind of is, but for the most part you don't configure
the softkeys. You enable or disable them via TCL. Here is the long
answer. Be sure to read the whole thing or e...
Topology: IP Phone > Switches > Microsoft NPS setup to forward 802.1x
proxy to > ISE 2.1 patch 3 Authentication: EAP-TLS using Cisco MIC SANs
Phone Models 802.1X support? 802.1x flavor Addtl Comment EAP-MD5 EAP-TLS
Cisco 3905 Y Y N Cisco 6911 Y Y N Cisco ...