Solved: Trigger LDAP sync via AXL API in CUCM 10.

jogrove · ‎02-17-2014

I am working with a customer who intends to deploy CUCM version 10 and will initially sync the CUCM with AD to provision the users.

Going forward when a new user is added to the AD they would like to trigger a sync of CUCM so that the new user is added to CUCM, so they can then carry out the rest of the provisioning using the AXL API without waiting for the minimum 6 hour sync window.

I believe it is possible to trigger a LDAP sync from the API, could someone confirm?

If this is possible, can a sync be triggered with a specific filter via the API so only the new user is synced rather than a full sync of all the users, to reduce the overhead on the CUCM publisher?

Thanks

John

tinghche · ‎02-17-2014

Hi John,

According to developer guide, you can use

doLdapSync to starting ldap sync and getLdapSyncStatus to get the status of the sync process.

https://developer.cisco.com/media/axl-schema-10-0/AXLSoap_doLdapSync.html

https://developer.cisco.com/media/axl-schema-10-0/AXLSoap_getLdapSyncStatus.html

The only attribute in the API is the name (the config name of ldap directory)

I think this API is just serve as a trigger point, the rest is rely on CUCM setting.

Hope this help,

Thanks,

Howard

View solution in original post

tinghche · ‎02-17-2014

Hi John,

According to developer guide, you can use

doLdapSync to starting ldap sync and getLdapSyncStatus to get the status of the sync process.

https://developer.cisco.com/media/axl-schema-10-0/AXLSoap_doLdapSync.html

https://developer.cisco.com/media/axl-schema-10-0/AXLSoap_getLdapSyncStatus.html

The only attribute in the API is the name (the config name of ldap directory)

I think this API is just serve as a trigger point, the rest is rely on CUCM setting.

Hope this help,

Thanks,

Howard

jogrove · ‎02-17-2014

Thanks Howard.

Sent from my iPad

joergwesely · ‎08-25-2014

If is send a request to start a LDAP-Sync I receive a 401 (Unauthorized) response.

This is what I'm sending:

<?xml version="1.0" encoding="UTF-8"?>

<axl:doLdapSync xmlns:axl="http://www.cisco.com/AXL/API/10.5" sequence="1408964654845">

<name>BT cdemo_AD</name>

</axl:doLdapSync>

Other AXL requests (including getLDAPSyncStatus and adding lines and devices) are working without any issue. Does anybody has seen this issue?

amoherek · ‎09-10-2014

Have you tried authenticating with an administrator's credentials?

Thanks,

Adrienne

chribble · ‎03-05-2014

You may also find the AXL change notification feature useful here. There are some examples on the official developer site: https://developer.cisco.com/site/collaboration/management/axl/learn/how-to/add-cnf-to-application.gsp

The general algorithm would be:

- Get the current change notification queue id from AXL

- Request LDAP sync to start

- Periodically (up to once per minute) poll AXL change notification, filtering for only changes to the User object

- Once you see the change notification indicating that the user was inserted (<action>i</action), the user has been synced

- Done

Good luck!

Yosse Lopez · ‎04-02-2014

This may not be the correct forum to ask, but is there a way to perform a LDAP sync in Unity Connection from API?

scheived · ‎03-24-2022

Here is what I've used with success.

Post to https://CUCM:8443/axl/

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns="http://www.cisco.com/AXL/API/10.5">
<soapenv:Header/>
<soapenv:Body>
<ns:doLdapSync >
<name>LDAP Config Name</name>
<sync>true</sync>
</ns:doLdapSync >
</soapenv:Body>
</soapenv:Envelope>

The response back you should receive is "Sync initiated successfully"