Developer Network

« Back to Extension Mobility API Questions

Authentication problem

Combination View

toggle

Authentication problem	Mayank Mishra	2/18/10 1:55 AM
RE: Authentication problem	David Staudt	2/18/10 4:09 AM
RE: Authentication problem	Mayank Mishra	2/19/10 2:14 AM
RE: Authentication problem	Stephan Steiner	3/1/10 9:30 PM
RE: Authentication problem	Mayank Mishra	3/5/10 3:14 AM

Mayank Mishra Posts: 3 Join Date: 2/10/10 Recent Posts	Authentication problem Answer 2/18/10 1:55 AM Mark as an Answer Submit Reply with Quote Quick Reply Is there a way to authenticate a user without performing login to Extension mobility services(XML over HTTP)?A successful login applies the device profile to the phone which may be undesirable.Is there any way in Call manager to directly authenticate to the underlying database or directorythough some undocumented API/LDAP etc.I am NOT using an external directory server for users.
	Sign in to vote. Flag Please sign in to flag this as inappropriate. Top

David Staudt Posts: 16 Join Date: 6/4/08 Recent Posts	RE: Authentication problem Answer 2/18/10 4:09 AM as a reply to Mayank Mishra. Mark as an Answer Submit Reply with Quote Quick Reply The AXL SOAP API has <doAuthenticateUser> <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns="http://www.cisco.com/AXL/API/7.0"> <soapenv:Header/> <soapenv:Body> <ns:doAuthenticateUser sequence="1"> <userid>testUser</userid> <password>password</password> </ns:doAuthenticateUser> </soapenv:Body> </soapenv:Envelope> ---------------------- <SOAP-ENV:Envelope SOAP-ENV:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"> <SOAP-ENV:Header/> <SOAP-ENV:Body> <axl:doAuthenticateUserResponse sequence="1" xmlns:axl="http://www.cisco.com/AXL/API/7.0" xmlns:xsi="http://www.cisco.com/AXL/API/7.0"> <return> <userAuthenticated>true</userAuthenticated> <code>0</code> </return> </axl:doAuthenticateUserResponse> </SOAP-ENV:Body> </SOAP-ENV:Envelope>
	Sign in to vote. Flag Please sign in to flag this as inappropriate. Top

Mayank Mishra Posts: 3 Join Date: 2/10/10 Recent Posts	RE: Authentication problem Answer 2/19/10 2:14 AM as a reply to David Staudt. Mark as an Answer Submit Reply with Quote Quick Reply Thanks for the information David.I had a concern as in the documentation for AXL services it was mentioned that : "CautionThe AXL API allows you to modify the Cisco Unified Communications Manager system database. Use caution when using AXL because each API call affects the system. Misuse of the API can lead to dropped calls and slower performance. AXL should act as a provisioning and configuration API, not as a real-time API." (1)I am not sure as to how big of an impact is an authentication request on the system.Do you have any views on this? (2)The HTTP basic authentication response itself is an indicator of authentication. Is there any specific reason for this webservice call or does it do the same thing conveniently wrapped as a WS call? Thanks. The AXL SOAP API has <doAuthenticateUser> <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns="http://www.cisco.com/AXL/API/7.0"> <soapenv:Header/> <soapenv:Body> <ns:doAuthenticateUser sequence="1"> <userid>testUser</userid> <password>password</password> </ns:doAuthenticateUser> </soapenv:Body> </soapenv:Envelope> ---------------------- <SOAP-ENV:Envelope SOAP-ENV:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"> <SOAP-ENV:Header/> <SOAP-ENV:Body> <axl:doAuthenticateUserResponse sequence="1" xmlns:axl="http://www.cisco.com/AXL/API/7.0" xmlns:xsi="http://www.cisco.com/AXL/API/7.0"> <return> <userAuthenticated>true</userAuthenticated> <code>0</code> </return> </axl:doAuthenticateUserResponse> </SOAP-ENV:Body> </SOAP-ENV:Envelope>
	Sign in to vote. Flag Please sign in to flag this as inappropriate. Top

Stephan Steiner Posts: 4 Join Date: 6/17/08 Recent Posts	RE: Authentication problem Answer 3/1/10 9:30 PM as a reply to Mayank Mishra. Mark as an Answer Submit Reply with Quote Quick Reply 1) What exactly are you going to use the call for? For performance reasons it's always a good idea to cache certain things instead of making requests all the time. But if you're doing something like allowing a user to configure his/her phone, then I see no issue with calling doAuthenticateUser, and if it passes let the user proceed with making changes. 2) The basic authentication refers to the authentication to the CCM of the connecting application. If you get past that, it means your user is authorized to use AXL. Normally you'd configure an application user with AXL permissions, then use that user's credential for basic authentication to access AXL.. then perform the authentication of the end user using doAuthenticateUser.
	Sign in to vote. Flag Please sign in to flag this as inappropriate. Top

Mayank Mishra Posts: 3 Join Date: 2/10/10 Recent Posts	RE: Authentication problem Answer 3/5/10 3:14 AM as a reply to Stephan Steiner. Mark as an Answer Submit Reply with Quote Quick Reply Thanks Stephan and David.
	Sign in to vote. Flag Please sign in to flag this as inappropriate. Top