McDewey

Multi-vendor documentation library · semantic search · MCP endpoint at /mcp

Page 176

↗ View in doc context
page
176
source
unity-connection/v15/design-guide/design-guide.md
chunk_id
unity-connection::v15::design-guide::design-guide::161

Disabling LDAP Authentication If you permanently disable LDAP authentication, users sign in to Unity Connection web applications using the Unity Connection web application password instead of the LDAP directory password. As LDAP integrated users do not have separate web application passwords, they manage the Unity Connection web applications using LDAP directory passwords. All the users with mailbox must change the web application password the next time they sign in to a Unity Connection web application. However, if you temporarily disable LDAP authentication, for example, when you are changing the LDAP field mapped to the user Alias field in Unity Connection, you do not have to change password settings for Unity Connection users. You can use Bulk Edit to change the passwords for all the users who have mailboxes but you must individually change passwords for users who not have mailboxes (meaning administrators). Step 1 In Cisco Unity Connection Administration, expand System Settings > LDAP and select LDAP Authentication. Step 2 On the LDAP Authentication page, uncheck the Use LDAP Authentication for End Users check box and select Save. If you are temporarily disabling LDAP authentication, skip the rest of this procedure. Do not change password settings of users with mailbox. Step 3 To change the password settings for all LDAP integrated users, do the following steps: a) In Cisco Unity Connection Administration, expand Users and select Users. b) On the Search Users page, select the LDAP users and select Bulk Edit. c) From the Edit menu, select Password Settings. d) For Web Application password, check the User Must Change at Next Sign-In check box. e) If you want to schedule when Unity Connection changes the setting for the selected users, from the Bulk Edit Task Scheduling menu, select Run Later and specify a date and time. f) Select Submit. Changing the LDAP Field Mapped to the Alias Field To change the field in LDAP directory that is mapped to the Alias field in Unity Connection, do the following steps. If you are using LDAP authentication, after you complete this procedure, users have to sign in to Unity Connection web interfaces using the new value of the Alias field in Unity Connection. Caution Step 1 Deactivate the Cisco DirSync service: a) In Cisco Unified Serviceability, expand the Tools menu and select Service Activation. b) On the Service Activation page, in the Directory Services list, uncheck the Cisco DirSync Service check box and select Save. Step 2 Disable LDAP authentication. See the Disabling LDAP Authentication section. Step 3 Delete all the LDAP directory configurations. See the Changing or Deleting LDAP Directory Configuration section. System Administration Guide 158 LDAP Disabling LDAP Authentication