Cisco Cisco TelePresence Video Communication Server Expressway
Appendix 4: Jabber Video and Active Directory
(NTLM) authentication
(NTLM) authentication
This section provides summary details about how to configure the VCS so that Jabber Video can
authenticate via direct access to an Active Directory server (using NTLM challenges).
authenticate via direct access to an Active Directory server (using NTLM challenges).
It also configures the VCS user account (FindMe) authentication source to use an LDAP connection to the
remote directory service.
remote directory service.
Note that this section only provides summary details. For full information, see:
n
Device Authentication on VCS Deployment Guide
n
Authenticating VCS Accounts using LDAP Deployment Guide
Configure Active Directory server details in Cisco VCS
1. Go to
Configuration > Authentication > Devices > Active Directory Service
.
2. Set Connect to Active Directory Service to On.
3. Set NTLM protocol challenges to Auto.
4. Enter the configuration details for the Active Directory Service:
AD domain
This must be the fully qualified domain name (FQDN) of the AD domain.
Short domain name
This is also known as the NetBIOS domain name.
Username and
Password
Password
Enter the AD domain administrator username and password. The password is case
sensitive.
sensitive.
5. Click Save to store the configuration and join the AD domain.
The VCS should join the AD domain. If you receive an error message, check the following:
l
the configuration settings on this page, including the username and password
l
the VCS’s CA certificate, private key and server certificate
You can also check the
Status
area at the bottom of the
Active Directory Service
page for more
information about the status of the connection to the AD domain.
Configure the user login account (FindMe) authentication source
1. Go to
Users > LDAP configuration
.
2. Set FindMe authentication source to Remote.
This means that when users log in to the VCS to configure their FindMe account, they will be
authenticated against a remote directory service over LDAP.
authenticated against a remote directory service over LDAP.
3. Configure the details of the LDAP connection to the remote directory service.
See Authenticating VCS Accounts using LDAP Deployment Guide for more information.
Create user accounts
Set up a user account as described in "
" for each user in Active Directory that
requires a Jabber Video account: Note that:
n
The Username must be the same name as configured in Active Directory.
(Account password details are not requested because the login account FindMe authentication source is
set to Remote.)
(Account password details are not requested because the login account FindMe authentication source is
set to Remote.)
Cisco TelePresence VCS Starter Pack Express Deployment Guide (X8.2)
Page 30 of 36
Appendix 4: Jabber Video and Active Directory (NTLM) authentication