Cisco Unity Connection Disable Inactive Users Accounts

Slides:



Advertisements
Similar presentations
Reference Guide Module 1: Getting Started August 2014.
Advertisements

Cisco Confidential © 2013 Cisco and/or its affiliates. All rights reserved. 1 Unity Connection Qualification for Prime Collaboration Development Release.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2012 Cisco and/or its affiliates. All rights reserved. 1 SRSV MWI Functionality.
© 2008 Cisco Systems, Inc. All rights reserved. Cisco Unity Connection 7.0 Directory Integration TOI Manoj Agrawal
ManageEngine ADAudit Plus A detailed walkthrough.
1 © 2001, Cisco Systems, Inc. All rights reserved. Voice Connector Features Voic Interoperability – 4.0(5) Voice Connector features Rahul Singh.
© 2006 Cisco Systems, Inc. All rights reserved.1 Unity Connection 7.0 Calendaring TOI Andrew Biggs
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 1 SAN Certificate in Unity Connection Presenter Name: Bhawna Goel.
© 2013 Cisco System Inc. All rights reserved Cisco Confidential 1 © 2013 Cisco System Inc. All rights reserved. 1 Allow System Distribution Lists to be.
1 © 2005 Cisco Systems, Inc. All rights reserved. Cisco Unity Connection 1.x Documentation What you need to know.
April, 2013 Configuration Logging Project Excalibur Miho Hoshino, WW Support Readiness.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2012 Cisco and/or its affiliates. All rights reserved. 1 Cisco Unity Connection.
Missed Call Notification Unity Connection 11.0
1 © 2002, Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Key differences between Cisco Unity Connection and Cisco Unity Manjit.
RMsis – v Simplify Requirement Management for JIRA.
Windows Vista Inside Out Chapter 22 - Monitoring System Activities with Event Viewer Last modified am.
© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2012 Cisco and/or its affiliates. All rights reserved. 1 Voice Mailbox.
Module 3: Administrator Set-Up Intuit Financial Services University Internet Banking Certification Training.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Partitions & Search Spaces TOI Aaron Belcher.
© 2013 Cisco System Inc. All rights reserved Cisco Confidential 1 © 2013 Cisco System Inc. All rights reserved. 1 System Backup And Restore Utility.
0 eCPIC Admin Training: Automating User Account Management These training materials are owned by the Federal Government. They can be used or modified only.
Module 5: User Maintenance Intuit Financial Services University Internet Banking Certification Training.
Presentation_ID © 2012, Cisco Systems, Inc. All rights reserved. Cisco Confidential.
Setting up/Managing Bank Personnel Intuit Financial Services University Business Financial Solutions Certification.
© 2006 Cisco Systems, Inc. All rights reserved.1 Connection 7.0 Serviceability Reports Todd Blaisdell.
© 2013 Cisco System Inc. All rights reserved Cisco Confidential 1 © 2013 Cisco System Inc. All rights reserved. 1 February 14, 2014 Unity Connection Legal.
1 © 2005 Cisco Systems, Inc. All rights reserved. Session Number Presentation_ID Cisco Public Cisco Unity Connection Notification Jane Rygg Core Services.
© 2003, Cisco Systems, Inc. All rights reserved. 1 TTS Functionality Via IMAP Unity Connection 1.1 Andrew Biggs UCBU.
User / Admin / Installer Profiles
© 2015 Cisco System Inc. All rights reserved Cisco Confidential 1 © 2015 Cisco System Inc. All rights reserved. 1 Subject Line Customization for Notifications.
RMsis – v now with JIRA 5.0 support Simplify Requirement Management for JIRA.
For Oracle employees and authorized partners only. Do not distribute to third parties. © 2008 Oracle Corporation – Proprietary and Confidential.
© 2006 Cisco Systems, Inc. All rights reserved.1 Cisco Unity Connection – External Service Diagnostic Tool Unity Connection ESDT TOI Overview Yolanda Liu,
FHA Training Module 1 This document reflects current policy related to this topic. Its content is approved for use in all external and internal FHA-related.
HIOS Portal Release Issuer Training.  Provide an Overview of HIOS Portal Release 20 Enhancements  Outline CMS Portal UI Changes  Provide an Overview.
Step 1 Lead Notifications Dear Partner, New leads have been assigned to your organization based on customer preference and are available for you.
IBM Software Group © 2008 IBM Corporation Tivoli Provisioning Manager Beta Program Web Replay Intro and Lab September, 2008 Robert Uthe.
Prototype Security New Feature: Send Mass & Activity Code.
Interstage BPM v11.2 1Copyright © 2010 FUJITSU LIMITED ADMINISTRATION.
ArcGIS for Server Security: Advanced
British Library Document Supply Service (BLDSS) API
Training Demo: DuPont Vendor Clients December 2016
REST API Support for Squared UC in Unity Connection 11.5
CARA 3.10 Major New Features
Cisco Unity Connection
Cisco Unity Connection 2.0 Phone View Configuration
Unity Connection Smart Licensing TOI
Cisco Unity Connection
Cisco Unity Connection
Administrator Training
Cisco Unity Connection
SPS FPDS-NG Integration: System Administration
Cisco Unity Connection
Program Management Portal (PgMP): Catalog and the Client
Cisco Unity Connection Logon Session Limit – TUI/VUI
Extranet User Instructions
1CapApp Company Setup Documentation
Business zone Ethernet – Ordering a Radio Survey
Cisco Unity Connection Read-only CLI
Placing an order for Etherway Copper
Cisco Unity Connection Customized Log-on Message
Cisco Unity Connection Minimum TLS Version Support
Cisco Unity Connection Common PIN
Cisco Unity Connection
Cisco Unity Connection -
Cisco Unity Connection Auto Advance to Next Message After Forward
[DISCLAIMER] This presentation document has been prepared by Vault Intelligence Limited (“Vault") and is intended for off line demonstration, presentation.
Unity Connection 7.0 Dispatch Messages
This presentation document has been prepared by Vault Intelligence Limited (“Vault") and is intended for off line demonstration, presentation and educational.
Administrator’s Manual
Presentation transcript:

Cisco Unity Connection Disable Inactive Users Accounts TOI PART I-TUI Interface EDCS-1549495 April 4 2016

Notice The information in this presentation is provided under Non-Disclosure agreement and should be treated as Cisco Confidential. Under no circumstances is this information to be shared further without the express consent of Cisco. Any roadmap item is subject to change at the sole discretion of Cisco, and Cisco will have no liability for delay in the delivery or failure to deliver any of the products or features set forth in this document.

Agenda Introduction What's new Rest API Demo Audits Troubleshooting References

Introduction

Introduction Telephony (TUI/VUI) is one of the interfaces of Unity Connection used to access Voicemails To comply with FEDRAMP requirements, access to the TUI/VUI interface will not be allowed if a user does not login to his account for pre-configured number of days The configuration setting applies system wide

What’s New

Configuring the Inactivity Timeout Period Under System Settings -> Advanced -> Connection Administration Configuration: A new field 'User Inactivity Timeout (in days)’ has been added on CUCA Default Value*: 0 days (Minimum 0 and Maximum 9999) *Note: Default Value is 35 days in FedRamp mode

New SysAgent Task A new SysAgent task has been added named “Check Inactive Users” which is scheduled to run daily and marks the users as Inactive whose last log-in is more than configured number of days

View User Current Status Under Edit User Basics A new drop-down for ‘User Status’ has been added to specify the current status of user: Inactive : User Account is Deactivated due to Inactivity Active : User Account is active

Reactivate the Inactive User Under Edit User Basics -> User Status The drop down gets enabled in case of Inactive Users An administrator can select ‘Active’ field to mark User Active

List Down all Inactive Users At Search Users page Under ‘Limit Search to’ drop-down list a new option for ‘Inactive Users’ has been added An administrator can select this option to filter out the list of all Inactive Users

Bulk Edit all Inactive Users At Search Users page Under ‘Limit Search to’ drop-down select ‘Inactive Users’ to list all inactive users An administrator can select ‘Bulk Edit’ option to mark all inactive users as active

REST API

REST API FOR USER INACTIVITY TIMEOUT Added “System.SA.UserInactivityTimeout ” configuration value that is use to view or update User Inactivity Timeout using the following APIs: API to View the Current Value of User Inactivity Timeout GET /vmrest/configurationvalues/System.SA.UserInactivityTimeout API to Update the Value of User Inactivity Timeout PUT Reference: http://docwiki.cisco.com/wiki/Cisco_Unity_Connection_Provisioning_Interface_ %28CUPI%29_API_--_Configuration_Values#Listing_and_Viewing /vmrest/configurationvalues/System.SA.UserInactivityTimeout /vmrest/configurationvalues/System.SA.UserInactivityTimeout

REST API FOR REACTIVATING INACTIVE USER Added the Rest API to mark User Active. GET PUT Reference: http://docwiki.cisco.com/wiki/Cisco_Unity_Connection_Provisioning_Interface_%2 8CUPI%29_API_--_User_API#Listing_the_Users https://<connection-server>/vmrest/users/<user-objectid> https://<connection-server>/vmrest/users/<user-objectid> <User> <Inactive>false</Inactive> </User>

Demo

Scenario 1 Configuring Inactivity Timeout and Login Behavior of Inactive Users via TUI/VUI Set “User Inactivity Timeout (in Days)” value to 2 on CUCA Run sysagent task Users whose last login time is more than 2 days will be marked as inactive Now, login to User’s mailbox through TUI/VUI The prompt will be played “Your account is locked and cannot be opened. For help please contact System Administrator”

Scenario 2 Re-activating the Inactive User Administrator lists the inactive users over CUCA Go to Edit User Basics -> User Status and select Active Save the user Now, login to Users mailbox through TUI is successful

Scenario 3: Deleting Inactive Users Administrator lists the inactive users over CUCA Multi select and delete the inactive users

AUDITS

Audit Logs Audit log: When user is marked Active Audit log: When user is marked Inactive LogMessage UserID : admin ClientAddress : 10.126.212.167 Severity : 6 EventType : GeneralConfigurationUpdate ResourceAccessed: cuadmin EventStatus : Success CompulsoryEvent : No AuditCategory : AdministrativeEvent ComponentID : Cisco Unity Connection CorrelationID : AuditDetails : User with Alias user4 has been marked active App ID: Cisco Tomcat Cluster ID: Node ID: ucbu-aricent-vm437 LogMessage UserID : CuSysAgent ClientAddress : 10.65.157.252 Severity : 5 EventType : GeneralConfigurationUpdate ResourceAccessed: Cisco Unity Connection EventStatus : Success CompulsoryEvent : No AuditCategory : AdministrativeEvent ComponentID : Cisco Unity Connection CorrelationID : AuditDetails : User with alias Adam marked inactive since the user has not logged in since last 2 days. App ID: Cisco Unity Connection Cluster ID: Node ID: ucbu-aricent-vm437

Audit Logs-Contd Audit log: When an Inactive User tries to login into account ucbu-aricent-vm437 local7 6 : 18: ucbu-aricent-vm437.cisco.com: %UC_UCEVNT-6-EvtSubAccountInactive: %[AppID=CuCsMgr][ClusterID=][NodeID=ucbu-aricent-vm437]: User account is inactive due to inactivity timeout. Details - Adam [1235].

Troubleshooting Tips

Troubleshooting Scenario 1 Problem Statement: User gets a prompt "Your account is Locked" due to inactivity timeout over TUI/VUI interface Action Required: Check in CiscoSysLog for Event “EvtSubAccountInactive” EvtSubAccountInactive signifies User is inactive due to inactivity timeout Administrator can also check the user status from CUCA The user cannot login through TUI/IMAP, but can login through other interfaces.

Troubleshooting Scenario 1: Contd. Check the Inactive field in tbl_subscribertimelastcall against the subscriberobject ID, ‘1’ means user is Inactive

Troubleshooting Scenario 3 Problem Statement: User gets a prompt "Your account is Locked" due to max invalid attempts Action Required: Check in CiscoSysLog for Event “EvtSubAccLockedMaxHack” EvtSubAccLockedMaxHack signifies user is locked due to maximum invalid attempts Administrator can also check the user status from CUCA

Troubleshooting Scenario 4 Problem Statement: Users are not marked as inactive after pre-configured days Action Required: Check if SysAgent “Check Inactive Users” is enabled Check the status and result of last run of Sysagent Task on CUCA If the run fail, check for diag_CuSysAgent_* logs

References Annotated logs wiki: Troubleshooting Guide for Cisco Unity Connection: https://wiki.cisco.com/display/UNITYTRANS/Annotated+diagnostics+for+Disable+Idenfiers+after+Preconfigured+inactivity+forTelephony+Interface http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/connection/11x/troubleshooting/guide/11xcuctsgx.html

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.