Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1083
Views
5
Helpful
8
Replies

Restrict IM and presence in CUPS / CUPC

Bill19795_2
Level 1
Level 1

‎02-12-2010 05:37 PM - edited ‎03-19-2019 12:28 AM

I have three groups of users such as Users1, Users2, and Users 3. I want to restrict who can IM and see the presence status of those user groups. Users1 should see everyone. Users2 should only see other people that are members of Users2 and Users 3 should only see members of users 3. Is it possible to restrict this using CUPC and CUPS version 7.x? Does the subscribe CSS and presence group restrict this ability?

Labels:
0 Helpful
8 Replies 8

htluo
Level 9
Level 9

‎02-12-2010 05:56 PM

Not available in 7.x.  Might be available in 8.x.

Michael

http://htluo.blogspot.com

0 Helpful

Bill19795_2
Level 1
Level 1
In response to htluo

‎02-12-2010 06:19 PM

Thank you for the quick response. What about this setup. IF I had three different OU’s in the LDAP that the CUPC users were configured for. Say OU=Users1 , OU=Users2 and OU=Users3 so the full path would be OU=Users1,DC=Company,DC=Local  for each OU. Now in CUPS I set each users LDAP profile to only search within their OU. If they cannot see the other users via LDAP they should not be able to IM or see their presence. Would this work? I was going to lab it up next week and test it.

0 Helpful

htluo
Level 9
Level 9
In response to Bill19795_2

‎02-13-2010 09:06 AM

This will limit the search function from CUPC.  However a CUPC user can add contacts from http://cups/ccmuser page (if he knows the user ID of the contact he wants to add).

Michael

0 Helpful

Bill19795_2
Level 1
Level 1
In response to htluo

‎02-13-2010 12:31 PM

So if a user manually adds a contact but that person  is not in their LDAP profile they will still be able to see the presence state and IM them? 

Can the presence group or subscribe CSS in call manager be used to limit this access?

0 Helpful

htluo
Level 9
Level 9
In response to Bill19795_2

‎02-13-2010 12:53 PM

Subscribe CSS and Presence Group on CUCM is for phone presence only.  It has nothing to do with IM.

You may try the "Privacy" config on http://cups/ccmuser.

Michael

http://htluo.blogspot.com

0 Helpful

Bill19795_2
Level 1
Level 1
In response to htluo

‎02-14-2010 03:06 PM

So if I have a user that is not in an OU that can be seen with my configured LDAP profile I will still be able to receive presence and IM that person?

0 Helpful

htluo
Level 9
Level 9
In response to Bill19795_2

‎02-14-2010 03:11 PM

That is correct.  OU is the container in LDAP.  It's used for LDAP operation only.

Presence is totally independent from LDAP.  Presence is based on SIP and SIMPLE (URI).  As long as you know the URI (e.g. johndoe@acme.local), you may subscribe to their presence and send them IM.

John Doe may set up privacy rules to block your subscription.

Thanks!

Michael

fossilev700
Level 1
Level 1
In response to htluo

‎03-17-2011 06:52 AM

Has this feature been added to CUPS 8. I do not see it listed in the release notes.

thanks,

Chris

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents