Is your new 2012 AD server virtualized? How is the time synchronization between CUCM and AD?
From: cisco-voip [mailto:[email protected]] On Behalf Of shabbar babrawala Sent: Wednesday, November 26, 2014 9:43 AM To: Ryan Huff; Sreekanth Narayanan Cc: [email protected] Subject: Re: [cisco-voip] AD Sync Hi Cucm 9.1 win 2012 It was working before on win 2003 broken after upgrade to 2012 Regards Shabbar ________________________________ From: [email protected]<mailto:[email protected]> To: [email protected]<mailto:[email protected]>; [email protected]<mailto:[email protected]> CC: [email protected]<mailto:[email protected]> Subject: RE: [cisco-voip] AD Sync Date: Wed, 26 Nov 2014 09:38:59 -0500 What version of CUCM and What version of AD? Has the AD sync ever worked correctly? * Is this a break/fix? * What changed from when it was working? * Is the distinguished user the same, did that user's AD permissions change * Does the distinguished user have the delegate control privilege on the domain? * Is this a new install? * Were any changes made to AD after the original full sync the first time? * Has either the domain name of the CUCM cluster or the AD server changed since the first time the LDAP full sync was ran? * Does the BIND authentication work correctly? * Have you completely removed an existing user account and then re-synced from AD to see if that account re-appears? ________________________________ Date: Wed, 26 Nov 2014 16:09:51 +0530 From: [email protected]<mailto:[email protected]> To: [email protected]<mailto:[email protected]> CC: [email protected]<mailto:[email protected]> Subject: Re: [cisco-voip] AD Sync Hi Shabbar, What is the CUCM version? So the users go into Inactive mode every 6 hours? Or once everyday? If once, what time does that happen and is that during a sync? Have you taken a look at the DirSync logs during the period of failure? What about a packet capture to see if this could be an issue due to the network? Thanks Sreekanth On 26 November 2014 at 11:37, shabbar babrawala <[email protected]<mailto:[email protected]>> wrote: Hi Have a strange problem where the sync with AD has broken , everyday morning we have to keep performing a full sync as the users show inactive even though the setting is to sync every 6 hours. Have even deleted the LDAP configuration and redone but no luck. any help is appreciated. Shabbar _______________________________________________ cisco-voip mailing list [email protected]<mailto:[email protected]> https://puck.nether.net/mailman/listinfo/cisco-voip _______________________________________________ cisco-voip mailing list [email protected]<mailto:[email protected]> https://puck.nether.net/mailman/listinfo/cisco-voip
_______________________________________________ cisco-voip mailing list [email protected] https://puck.nether.net/mailman/listinfo/cisco-voip
