Cisco Cisco IP Contact Center Release 4.6.2 Installation Guide

The Microsoft Active Directory

®

 (AD) service ensures integrity and security in network environments 

by managing information about access rights to applications, files, databases, and other resources.

The authentication model in Release 7.0(0) is aligned with Active Directory in compliance with accepted 
Microsoft blueprints. Required privileges for ICM WebView are limited in accordance with AD 
standards.

For details on Active Directory, refer to the Staging and Active Directory Guide for Cisco ICM/IPCC 
Enterprise & Hosted Editions. 

To install the WebView Reporting component of ICM Setup, the WebView administrator must have local 
admin and setup rights to the ICM domain.

No other configuration and reporting functions require overall domain administrative capability.

In the previous release, each user account was created individually. The individual who created user 
accounts did so by using the User List tool in the ICM Configuration Manager utility.

This remains a valid method of adding user accounts.

Customers now have the option to assign WebView privileges to any AD users by making them members 
of the WebView Domain Local Security Group (DLG).

This is now the way to add users in Release 7.0(0).

This section explains how WebView user authentication aligns with the ICM Active Directory model. 

The hierarchy of AD Organizational Unit's (OU's) and the Domain Local Security Group's (DLG's) in 
an ICM deployment is as follows:

<Root>

CiscoICM_<function>

<Facility>

<facility_name>_<function>

<Instance>

<facility_name>_<instance_name>_<function>

A WebView user account would be an account in the AD with membership of 
"<facility_name>_<instance_name>_WebView" DLG within the respective "<Instance>" OU.