Unified Messenger 4.0 changes to the Windows 2000 Active Directory Schema



Similar documents
Modular Messaging. Release 3.0 / 3.1. Diminished Permissions for Exchange.

Setting Up Exchange. In this chapter, you do the following tasks in the order listed:

Modular Messaging. Release 4.0 Service Pack 4. Whitepaper: Support for Active Directory and Exchange 2007 running on Windows Server 2008 platforms.

Windows 2000 Active Directory Configuration Guide

WirelessOffice Administrator LDAP/Active Directory Support

Managing Distribution Lists in Cisco Unity 8.x

Module 1: Introduction to Active Directory Infrastructure

Digipass Plug-In for IAS. IAS Plug-In IAS. Microsoft's Internet Authentication Service. Installation Guide

How to install Small Business Server 2003 in an existing Active

Create, Link, or Edit a GPO with Active Directory Users and Computers

Deploying Remote Desktop Connection Broker with High Availability Step-by-Step Guide

Cloud Services ADM. Agent Deployment Guide

Integrating PISTON OPENSTACK 3.0 with Microsoft Active Directory

Configuring Microsoft Active Directory for Integration with NextPage NXT 3 Access Control

MAPILab Search for Exchange. Administrator s Guide. Version 1.3

Windows Server 2003 Service Pack 1 (SP1) or later service packs Enhanced version of Ntdsutil.exe

Application Notes for Microsoft Office Communicator Clients with Avaya Communication Manager Phones - Issue 1.1

RSA Authentication Manager 7.1 Microsoft Active Directory Integration Guide

Active Directory Installation on Windows Server 2012

IPedge Feature Desc. 5/25/12

PrivateWire Gateway Load Balancing and High Availability using Microsoft SQL Server Replication

Implementation notes on Integration of Avaya Aura Application Enablement Services with Microsoft Lync 2010 Server.

Active Directory Management. Agent Deployment Guide

Microsoft Exchange Server 2007, Upgrade from Exchange 2000/2003 ( /5049/5050) Course KC Days OVERVIEW COURSE OBJECTIVES AUDIENCE

LDAP Implementation AP561x KVM Switches. All content in this presentation is protected 2008 American Power Conversion Corporation

Troubleshooting Active Directory Server

Application Notes for Configuring Microsoft Office Communications Server 2007 R2 and Avaya IP Office PSTN Call Routing - Issue 1.0

White Paper: Cisco Unity Data and the Directory

Mailbox Recovery for Microsoft Exchange 2000 Server. Published: August 2000 Updated: July 2002 Applies To: Microsoft Exchange 2000 Server SP3

Technology Primer. OPS Manager, Release 7.4. Integrating Your Directory Server with our Directory Service Solution

Ultimus and Microsoft Active Directory

Microsoft Office 365 from Vodafone. Administrator s Guide for Midsize Businesses and Enterprises

Administering Active Directory. Administering Active Directory. Reading. Review: Organizational Units. Review: Domains. Review: Domain Trees

Appendix A: Installation, upgrade, and migration checklists

8.7. Target Exchange 2010 Environment Preparation

Exchange Mailbox Protection Whitepaper

Citrix Systems, Inc.

Deploying ModusGate with Exchange Server. (Version 4.0+)

LDAP Directory Integration with Cisco Unity Connection

GFI Product Guide. Archive Assistant

Appendix G: MAS and MSS reports

Administering Group Policy with Group Policy Management Console

Appendix A: Installation, upgrade, and migration checklists

Empowered by Innovation. Setting Up and Using Fax Mail. P/N July 2006 Printed in U.S.A.

Upgrading, Integrating, and Troubleshooting Exchange Server 2003 in Mixed Environments

Microsoft Visual Basic Scripting Edition and Microsoft Windows Script Host Essentials

CMT for Notes. Installation Guide


ILTA HAND 6B. Upgrading and Deploying. Windows Server In the Legal Environment

Best Practices for Integrating NetVanta UC Server with Microsoft Exchange Server

To enable an application to use external usernames and passwords, you need to first configure CA EEM to use external directories.

DigitalPersona Pro Server for Active Directory v4.x Quick Start Installation Guide

PowerCAMPUS Portal and Active Directory

Dell MessageStats for Lync and the MessageStats Report Pack for Lync & OCS 7.3. User Guide

Attention: This is an old version of the GALsync manual, which was published for GALsync 5.1.

Active Directory Adapter with 64-bit Support Installation and Configuration Guide

Unified Messaging User Guide

Achieve more with less

Releasing blocked in Data Security

Configuring LDAP Directory Search on SPA SIP IP Phones

Exchange 2000 Public Folder Replication

The Windows Server 2003 Environment. Introduction. Computer Roles. Introduction to Administering Accounts and Resources. Lab 2

NSi Mobile Installation Guide. Version 6.2

How To Use Exchange Reporter Plus On A Microsoft Mailbox On A Windows (Windows) On A Server Or Ipa (Windows 7) On An Ubuntu 7.6 (Windows 8) On Your Pc Or

Exchange Mailbox Protection

Sage 200 Web Time & Expenses Guide

How To Install An Archive Service On An Exchange Server (For A Free) With A Free Version Of Ios (For Free) On A Windows Xp Or Windows 7 (For Windows) (For An Ubuntu) (

6.9. Administrator Guide

Dell KACE K1000 Management Appliance. Service Desk Administrator Guide. Release 5.3. Revision Date: May 13, 2011

Windows.NET Beta 3 Active Directory New Features

bv-control for Active Directory v8.50 User Guide

VERITAS NetBackup 6.0 for Microsoft Exchange Server

GFI Product Guide. GFI MailArchiver Archive Assistant

Installation Manual UC for Business Unified Messaging for Exchange 2010

ACCESSING SINGLE NUMBER SERVICE FROM THE WEB PORTAL (FOR PHONE ADMINISTRATION SEE PAGE 6)

Unified Messaging and Fax

Introducing Cisco Voice and Unified Communications Administration Volume 1

XyLoc Security Server w/ AD Integration (XSS-AD 5.x.x) Administrator's Guide

HTTP communication between Symantec Enterprise Vault and Clearwell E- Discovery

Also on the Performance tab, you will find a button labeled Resource Monitor. You can invoke Resource Monitor for additional analysis of the system.

User Manual for Delivery

How To Authenticate On An Xtma On A Pc Or Mac Or Ipad (For A Mac) On A Network With A Password Protected (For An Ipad) On An Ipa Or Ipa (For Mac) With A Log

Cloud Services ADM. User Interface Guide

This course is intended for IT professionals who are responsible for the Exchange Server messaging environment in an enterprise.

GALSYNC V7.0. Manual. NETsec. NETsec GmbH & Co.KG Schillingsstrasse 117 DE Düren. 01. June 2016

Introduction. Before you begin. Installing efax from our CD-ROM. Installing efax after downloading from the internet

Technical Bulletin 005 Revised 2010/12/10

WINDOWS 2000 Training Division, NIC

HP Asset Manager. Software version: Integration with software distribution and configuration management tools

Forests, trees, and domains

Managing an Active Directory Infrastructure

Plug-In for Informatica Guide

SPECOPS DEPLOY / OS 4.6 DOCUMENTATION

Installation and Configuration Guide

Transcription:

Introduction This document discusses the changes made to the schema during the installation of Unified Messenger 4.x, to address the customer concern: what is this product going to do to my schema?. This document does not address every aspect of the installation, only the Unified Messenger installation options that affect the Schema. The Windows 2000 (AD) Schema is an information repository that describes the possible contents (object classes and attributes) of the remainder of the 1. There are methods to search and retrieve the schema just like the rest of the directory data, making that information available, manageable, and scaleable. The design allows third parties to extend the schema with classes and attributes to allow applications such as Unified Messenger (UM) to use the AD for the storage of user and gateway configuration properties. While updates to objects are a normal part of system administration, extending or otherwise changing the schema is a very significant event. Because the schema describes the sort of objects that can be contained in the directory, it must be consistent throughout the entire domain forest. Changes to the schema therefore trigger replication of the schema and associated directory checks, which may consume considerable network bandwidth and directory server processing power. For this reason, Windows 2000 (and later) possess a Schema Admins group which is intended to contain the identities of those (usually few) individuals in an organization who are permitted to modify the schema. The installation of Unified Messenger may extend and does change the schema, depending on the options selected. All changes are made using Microsoft-documented methods. Schema changes made by the installation of Unified Messenger As part of the installation of Unified Messenger there are three options that may be selected to be installed that will affect the schema. These are the AD updates for: 1. Enable Octel Analog Networking 2. Enable Unified Messenger 3. Enable User Administration Only one of these, Enable Octel Analog Networking, actually extends the schema by adding a class and attributes to that class in the schema. The Enable Unified Messenger and Enable User Administration options do not add classes and attributes; selection of these two options make the changes necessary to support UM in an AD environment. 1 This kind of data about data is sometimes called metadata.

For Enable Unified Messenger, the Exchange extension data attribute 2 is changed to be allowed to replicate to the Global Catalog (GC). For Enable User Administration, a Display-Specifier is added to an existing class to allow the display of the Unified Messenger tab on the accounts property pages. All of these selections only need to be made once per AD forest, and they must be made by an account that is a member of the Schema Admins group. Enable Octel Analog Networking This selection only needs to be made if Octel Analog Networking is required for any UM Voice Mail Domain (VMD) in the organization. This option enables administration of the Octel Analog Networking (OAN) gateway, found in the Exchange System Manager (ESM) application. The following changes are made to the schema when the Enable Octel Analog Networking option is selected. One Class is added to the Schema: Gateway. This is the overall definition of the gateway, which contains the attributes Seven Attributes are added to the OAN gateway class: VoiceMailDomainID. The VMD that this OAN gateway serves SerialNumber. The serial number of this UM OAN gateway SendingServer. The UM server responsible for sending OAN messages in this VMD NonDeliveryReportTime. The NDR time in hours MaxTTSTime. The maximum length of a TTS message to be sent via OAN RemoteNodes. The OAN nodes with which this UM OAN gateway exchanges messages Schedules. The schedules for this OAN gateway 2 The display name of this attribute is ms-exch-extension-data. It is also present in the Exchange 5.5 directory schema, where it is the only recommended place for independent software vendors to store per-exchange-user data.

The local nodes, delivery rules, and dialing page configurations are stored in the RemoteNode attribute in a proprietary format. Applicable Components The Exchange System Management Tools (ESMT), including the ESM, are installed as part of an Exchange server installation or can be installed on any system on which Exchange servers and components need to be managed. In order to actually administer the OAN gateway, the Octel Analog Networking Administration extension needs to be installed on any ESM system from which you also intend to administer the OAN gateway. Enable Unified Messenger & Enable User Administration Enable Unified Messenger UM stores subscriber configuration information in the ms-exch-extension-data attribute. The UM Voice Server synchronizes with the AD GC to obtain details of subscriber configuration and other addressable objects in the forest. Specifically the attribute ismemberofpartialattributeset is set to the value TRUE for the attribute schema definition of the ms-exch-extension-data attribute. The default value of this attribute is FALSE, which means that the Extension Data does not replicate to the GC. In order to be allowed to make this change, the installation program first must be allowed to change the schema. It does so by going to the registry, changing HKLM/System/CurrentControlSet/Services/NTDS/Parameters/SchemaUpdateAllowed to a 1 from a 0, making the change to ismemberofpartialattributeset from FALSE to TRUE, then setting SchemaUpdateAllowed back to zero.

During the configuration phase of the installation of UM, a peer server and a peer directory server are nominated. The peer server is the Exchange server that is used by UM to send messages to subscriber mailboxes on behalf of unknown callers. The peer directory server is an AD GC. UM wants to know about all users in the organization, so it needs to go to the centralized directory source in the AD, take the information about all users in the directory, and build it into the Front End Database (FEDB). The Extension Data must be replicated to the GC so UM gets information about all Accounts, Contacts (custom recipients), and Groups (distribution lists), especially those enabled for UM. Enable User Administration This option allows users, groups, and contacts objects to be enabled for UM. This must be installed on an AD server machine and should be done once per organization/forest. You must also install the Subscriber Administration for Exchange 2000 component on every machine where you use Users and Computers to enable mailboxenabled accounts for Unified Messenger.

You will always have to select both the Enable Unified Messenger and Enable User Administration options to have a properly configured system. You can select to install them individually, but until they are both installed, the AD will not have the required components to support UM. Applicable Components Once you have configured the AD to support UM, you will need to have the required tools installed on any machine where you use Users and Computers to enable mailbox-enabled accounts for Unified Messenger. For this task, the Subscriber Administration extensions need to be installed. If valid security credentials are supplied, the installation package will add the Unified Messenger tab to the set of tabs that the Users and Computers MMC snap-in will display for each user, contact, or group. Specifically, the GUID A6688A44- CEDE-456E-AE57-3567D9909AE7 is added to the multi-valued attribute adminpropertypages on the user-display object, which has the dn: CN=user-Display,CN=409,CN=DisplaySpecifiers,CN=Configuration,DC=<corp>,DC=<com> 3 Global Catalog Exchange 2000 Server Unified Messenger Server Users and Computers Exchange tabs NOT visible UM tab NOT visible Users and Computers Exchange System Management Tools UM Subscriber Extensions Exchange tabs visible UM tabs visible Users and Computers Exchange System Management Tools Exchange tabs visible UM tabs NOT visible The ESMT and UM extensions only appear on those machines on which they are installed. This is considerably different than Exchange 5.5. In Exchange 5.5, installing extensions on one server in the Exchange Site allowed those extensions to be replicated and used on every Exchange server in that Site. This is quite different from using extensions with the AD and Exchange 2000. The AD can specify user interface elements on a per-class basis. These elements are property pages, context menus, localized class and attribute names, icons, and creation wizards. The display specification system stores the information for the property sheets of these elements. The user interface information is stored in an AD object called a 3 In the above example, the CN=409 indicates English. For localized languages, the CN= in this portion of the DN will be indicated by the language ID, i.e. 407 for German, 411 for Japanese, etc.

Display-Specifier. Each Display-Specifier object contains attributes describing the various user interface elements for the specific user interface to which it pertains. Each Display-Specifier object is stored in a corresponding to a supported locale. The user class has a corresponding Display-Specifier object called user-display. When you bind to an object of a particular class, you look up the Display-Specifier object based on the same name as the class and within the container for the current locale. The AD user interface first looks in a locale container named after the local identifier for the current user s session. If a folder of that name is not found, the US English locale is used. Additionally, the MAPI Address book provider for the AD uses the GC as its data source so replication of the ms-exch-extension-data attribute to the GC is necessary for MAPI to be able to support access to client applications through the PR_EMS_AB_EXTENSION_DATA property. Conclusion The AD schema is designed to be changed and extended to support additional functionality in an AD environment. UM takes advantage of the flexibility of this design by modifying the schema with the necessary components In order to support Unified Messenger in an environment, some changes need to be made to the AD schema. The extent of these changes depends on what type of support for UM is required. Changes to the schema will be required for subscriber/account administration. Extending the schema may be required if the organization requires the Octel Analog Networking option. Notes 1. The information in this document generally applies to the Unified Messenger 4.x product stream. One minor difference between UM 4.00 and UM 4.01 and later should be pointed out: the Display-Specifier for user-display was for the English language only in UM 4.00 and includes additional locales for UM 4.01 and later. 2. There is no un-installation routine for removing the schema changes made by the UM installers. However, if you were familiar with the schema layout and how to use the ADSI Edit utility (installed from the Windows 2000 CD Support\Tools directory), the changes could be manually un-done if required.

Glossary This glossary contains brief descriptions of some of the terminology used in this document. For more information about any of these or other terms used, please go to http://support.microsoft.com, http://msdn.microsoft.com, or http://www.google.com and search on the desired term. (AD): an information repository with methods to search and retrieve the stored information, making that information available, manageable, and scaleable. Attribute (or Property): holds the value of the Property. Class: a storage unit in the, it holds the collection of required and optional attributes. CN: Common Name identifies the name of an object in the directory. DN: Distinguished Name a globally unique identifier representing an individual s identity. Forest: a collection of domain trees. Global Catalog (GC): a replica of attributes of every object in the, used for queries that span the company across all domains. Naming Contexts (NCs): the Domain NC contains all objects in the domain and replicates only in the domain; the Schema NC contains the class and attribute definitions and replicates in the forest; the Configuration NC contains the topology of forest elements and replicates in the forest. Schema: contains the definitions of the objects stored in the, defines classes and attributes, and is extensible, allowing new classes to be added, and attributes added to classes. Tree: a hierarchical organization of domains. References 1. LDF schema change definition files from the UM installation CD. 2. Microsoft Windows 2000 Display Specifiers whitepaper (http://msdn.microsoft.com/library/en-us/dnw2k/html/msdn_active_display.asp). 3. Unified Messenger architects and developers. 4. Personal experience. I hope you have found this document useful. Please provide any comments to the author at rwallen@avaya.com.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information