LDAP custom filter setup
This chapter provides information to configure the LDAP directory. Configuration takes place in these related windows:
LDAP System Configuration
LDAP Filter Configuration
For additional information, see topics related to the directory, application users, and end users in the Cisco Unified Communications Manager System Guide.
About LDAP custom filter setup
Cisco Unified Communications Manager Administration, use the menu path to configure LDAP filters.
In the LDAP Filter Configuration window, you specify information about the LDAP filter.
Before you begin
Before you can synchronize the LDAP directory, you must activate the Cisco DirSync service. For information about how to activate services, see the Cisco Unified Serviceability Administration Guide.
Changes to LDAP Directory information and LDAP Authentication settings are possible only if synchronization from the customer LDAP directory is enabled in the
Cisco Unified Communications Manager Administration LDAP System Configuration window.
You can import and export LDAP custom filters by using the
Bulk Administration Tool. For more information, see the
Cisco Unified Communications Manager Bulk Administration Guide.
LDAP filter deletion
When you delete an LDAP filter,
Cisco Unified Communications Manager removes that filter from the database.
You cannot delete an LDAP filter that is assigned to a directory agreement. To determine if an LDAP filter is assigned to a directory agreement, select Dependency Records from the Related Links drop-down list box in the LDAP Filter Configuration window. If any dependencies display for that LDAP filter, you cannot delete it.
LDAP filter settings
The following table describes the LDAP filter settings.
Table 1 LDAP custom filter settings
LDAP Custom Filter Information
Enter a name for the LDAP filter. The name can contain a maximum of 64 UTF-8 characters.
Enter a filter. The filter can contain a maximum of 1024 UTF-8 characters. Enclose the filter text within parentheses ().
The LDAP filter filters the results of LDAP searches. LDAP users that match the filter get imported into the
Cisco Unified Communications Manager database, while LDAP users that do not match the filter do not get imported.
The filter text that you enter must comply with the regular LDAP search filter standards specified in RFC 4515. It is recommended that you verify the LDAP search filter against the LDAP directory/searchbase by using the ldapsearch command.
You apply LDAP filters to LDAP directories. For more information, see the LDAP directory setup. You can apply an LDAP filter to multiple LDAP directories, and to all LDAP directory types for which the filter is valid.