Cisco Cisco E-Mail Manager Unity Integration Option Guida All'Installazione
10-2
WebView Installation and Administration Guide for Cisco Enterprise & Hosted Editions, Release 7.0(0)
Chapter 10 WebView Security: Active Directory and Secure Socket Layer
About Active Directory
The Microsoft Active Directory
®
(AD) service ensures integrity and security in network environments
by managing information about access rights to applications, files, databases, and other resources.
The authentication model in Release 7.0(0) is aligned with Active Directory in compliance with accepted
Microsoft blueprints. Required privileges for ICM WebView are limited in accordance with AD
standards.
Microsoft blueprints. Required privileges for ICM WebView are limited in accordance with AD
standards.
For details on Active Directory, refer to the Staging and Active Directory Guide for Cisco ICM/IPCC
Enterprise & Hosted Editions.
Enterprise & Hosted Editions.
Domain Rights for the WebView Administrator
To install the WebView Reporting component of ICM Setup, the WebView administrator must have local
admin and setup rights to the ICM domain.
admin and setup rights to the ICM domain.
No other configuration and reporting functions require overall domain administrative capability.
User Membership in the WebView Domain Local Security Group
In the previous release, each user account was created individually. The individual who created user
accounts did so by using the User List tool in the ICM Configuration Manager utility.
accounts did so by using the User List tool in the ICM Configuration Manager utility.
This remains a valid method of adding user accounts.
Customers now have the option to assign WebView privileges to any AD users by making them members
of the WebView Domain Local Security Group (DLG).
of the WebView Domain Local Security Group (DLG).
This is now the way to add users in Release 7.0(0).
WebView User Authentication Model
This section explains how WebView user authentication aligns with the ICM Active Directory model.
The hierarchy of AD Organizational Unit's (OU's) and the Domain Local Security Group's (DLG's) in
an ICM deployment is as follows:
an ICM deployment is as follows:
<Root>
CiscoICM_<function>
<Facility>
<facility_name>_<function>
<Instance>
<facility_name>_<instance_name>_<function>
A WebView user account would be an account in the AD with membership of
"<facility_name>_<instance_name>_WebView" DLG within the respective "<Instance>" OU.
"<facility_name>_<instance_name>_WebView" DLG within the respective "<Instance>" OU.