McDewey

Multi-vendor documentation library · semantic search · MCP endpoint at /mcp

Page 171

↗ View in doc context
page
171
source
unity-connection/v15/design-guide/design-guide.md
chunk_id
unity-connection::v15::design-guide::design-guide::156

• Each LDAP server with which Unity Connection should synchronize data. • Each LDAP server that Unity Connection user should access to authenticate user sign-ins. • Each redundant LDAP server which you want Unity Connection to synchronize or authenticate. Step 2 In Cisco Unified Operating System Administration, expand Security and select Certificate Management > . Step 3 To upload the SSL certificate you exported in Step 1, do the following steps: • Select the Upload Certificate/ Certificate chain option. • Select tomcat-trust from the Certificate Purpose drop-down list. • Select Browse in the Upload File field to upload the SSL certificate. • Restart the Cisco DirSync and Cisco Tomcat services to avoid failures in LDAP synchronization and authentication. Step 4 To restart Cisco DirSync service, do the following steps: • In Cisco Unified Serviceability, expand Tools and select Service Activation. • On the Service Activation page, uncheck the Cisco DirSync service field and select Save. • Check the Cisco DirSync service field and select Save. To restart the Cisco Tomcat service, run the CLI command utils service restart Cisco Tomcat. Configuring LDAP Authentication in Unity Connection The LDAP directories supported for LDAP synchronization are also supported for LDAP authentication. LDAP authentication authenticates Unity Connection user data against the user data in the LDAP directory, so that: • Passwords that allow Unity Connection users gain single sign-on access on Unity Connection web applications, such as Cisco Unity Connection Administration and Cisco PCA. • Passwords that are required to sign in to IMAP email applications to access Unity Connection voicemails. If LDAP authentication is enabled, the web application password field does not appear in Cisco Unity Connection Administration and can only be managed from the LDAP directory. The voicemail passwords used to access Unity Connection voicemails from telephone user interface (TUI) are authenticated against the Unity Connection database. The passwords or PINs can be managed using phone interface or Messaging Assistant web tool. The administrator account that is used to sign in to Cisco Unified Operating System Administration, Disaster Recovery System, and the command line interface cannot be configured for LDAP integration. Note Step 1 In Cisco Unity Connection Administration, expand System Settings > LDAP and select LDAP Authentication. System Administration Guide 153 LDAP Configuring LDAP Authentication in Unity Connection