Presentation on theme: "ECS and LDAP Karen Krivaa Product Marketing Manager."— Presentation transcript:
ECS and LDAP Karen Krivaa Product Marketing Manager
LDAP: Lightweight Directory Access Protocol LDAP serves as a flexible, scalable user- and security- management infrastructure to store and manage user profiles and to serve as the basis for site-wide user authentication and security Allows for one central database to be updated for authentication via multiple ECSs on the network LDAP is an IETF standard defined by the Accessing and Indexing Directories (ASID) working group.
LDAP – Main Features today Authentication When an endpoint registers to the ECS, it is authenticated according to its alias/es and or IP address. Location of Endpoint (using static/online info) If ECS cannot find the destination in its zone, it searches the static info or the online info directory Update The ECS updates the LDAP server with information about online endpoints, such as aliases, call signaling address and RAS address. Retrieve neighbor GK list The ECS reads the neighbor list from the LDAP server every fixed time
LDAP – Tree Structure
New LDAP Schema Based on Draft H.350.x recommendations (February 2003) Authentication At registration to the ECS, the endpoint will be authenticated according to its H.235 sender Id and password Fixed aliases from LDAP Successful registration will utilize aliases as defined in LDAP and NOT in the endpoint Authorization Different service level groups will be utilized for authorization of the call by the ECS at the ARQ stage