Shabbar, Sounds like the LDAP Manger Distinguished User or the LDAP search base is acting strangely. Have you made any OU/permisison changes in AD?
Try using a new/different distinguished manager user in the LDAP directory configuration. Also, are you using any custom filters? Thanks, Ryan From: shabbar_babraw...@hotmail.com To: ryanh...@outlook.com; sknt...@gmail.com CC: cisco-voip@puck.nether.net Subject: RE: [cisco-voip] AD Sync Date: Wed, 26 Nov 2014 14:42:30 +0000 Hi Cucm 9.1 win 2012 It was working before on win 2003 broken after upgrade to 2012 Regards Shabbar From: ryanh...@outlook.com To: sknt...@gmail.com; shabbar_babraw...@hotmail.com CC: cisco-voip@puck.nether.net Subject: RE: [cisco-voip] AD Sync Date: Wed, 26 Nov 2014 09:38:59 -0500 What version of CUCM and What version of AD? Has the AD sync ever worked correctly? Is this a break/fix?What changed from when it was working?Is the distinguished user the same, did that user's AD permissions changeDoes the distinguished user have the delegate control privilege on the domain?Is this a new install?Were any changes made to AD after the original full sync the first time?Has either the domain name of the CUCM cluster or the AD server changed since the first time the LDAP full sync was ran?Does the BIND authentication work correctly? Have you completely removed an existing user account and then re-synced from AD to see if that account re-appears? Date: Wed, 26 Nov 2014 16:09:51 +0530 From: sknt...@gmail.com To: shabbar_babraw...@hotmail.com CC: cisco-voip@puck.nether.net Subject: Re: [cisco-voip] AD Sync Hi Shabbar, What is the CUCM version? So the users go into Inactive mode every 6 hours? Or once everyday? If once, what time does that happen and is that during a sync? Have you taken a look at the DirSync logs during the period of failure? What about a packet capture to see if this could be an issue due to the network? Thanks Sreekanth On 26 November 2014 at 11:37, shabbar babrawala <shabbar_babraw...@hotmail.com> wrote: Hi Have a strange problem where the sync with AD has broken , everyday morning we have to keep performing a full sync as the users show inactive even though the setting is to sync every 6 hours. Have even deleted the LDAP configuration and redone but no luck. any help is appreciated. Shabbar _______________________________________________ cisco-voip mailing list cisco-voip@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-voip _______________________________________________ cisco-voip mailing list cisco-voip@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-voip
_______________________________________________ cisco-voip mailing list cisco-voip@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-voip
