Cisco Call Manager 5.x discovery failing with HTTP error (NETIQKB70454)

  • Document ID:7770454
  • Creation Date:27-Jun-2007
  • Modified Date:10-May-2011
    • Micro Focus Products:
      AppManager

Environment

NetIQ AppManager 6.x
NetIQ AppManager 7.0.x

Situation

NQAxlUtil::getServerInfo - failed with the following error:
HTTP error encountered [403]: The server understood the request, but cannot fulfill it.

Resolution

Discovery_CiscoCM fails with

NQAxlUtil::getServerInfo - failed with the following error:
HTTP error encountered [403]: The server understood the request, but cannot fulfill it.

This error occours because the AXL user had insufficiant permissions to query the Call Manager.

Change the user to CCMAdmin or get the Call Manager Administrator to create a Call Manager User with the minimum premissions documented in Notes. Please note that these are absolute minimum premissions, an AXL user with out these permissions will lead to unpredictable results.

Do not specify a windows or domain user account or a service account for the AXL user. This user must be set up in the Call Manager GUI

Test that the new user can log onto the Cisco Call Manager Gui from the proxy server.

Additional Information

Formerly known as NETIQKB70454

Configuring Permissions for AppManager to access the Cisco Unified CallManager server

 

Overview

 

If you do not want to permit AppManager the use of the CCMAdministrator account in Cisco Unified CallManager, you will need to configure a new user and assign the user to a user group.  You will configure the group for read-only permissions on selected objects.  It does not include any write permissions.

 

Configure Cisco Unified CallManager

  1. Bring up the website of the Cisco Unified CallManager publisher, probably https://<hostname>/ccmadmin, and enter username/password.
  2. On the ?Cisco Unified CallManager Administration? site, go to ?User Management -> Application User?.
  3. Press ?Add New?.
  4. Type ?netiq? as the user id.  Then choose and type a password (twice), and press ?Save?.
  5. Go to ?User Management -> User Group?.
  6. If the Search Results are empty, press the Find button.
  7. Find the ?Standard CCM Read Only? row and click on the Copy icon.
  8. Type ?NetIQ CCM Read Only? as the name and press OK.
  9. Press ?Add Application Users to Group?.
  10. If the Search results are empty, press the Find button.
  11. Select ?netiq? (i.e. check the checkbox), and press ?Add Selected?.
  12. Go to ?User Management -> User Group? again.
  13. Find the ?NetIQ CCM Read Only? row and click on the Roles icon.
  14. Press ?Assign Role to Group?.
  15. If the Search results are empty, press the Find button.
  16. Select ?Standard AXL API Access? (i.e. check the checkbox), then press ?Add Selected?.
  17. The ?NetIQ CCM Read Only? group should now have four roles assigned to it.  Verify the list, then press ?Save?.
    1. Standard CCM Admin Users
    2. Standard CCMADMIN Read Only
    3. Standard SERVICEABILITY Read Only
    4. Standard AXL API Access

  Configure AppManager

1.       In Security Manager, enter this:

a.       Label = CiscoCM_AXL

b.       Sublabel = <hostname>

c.       Value1 = ?netiq?

d.       Value2 = the password you entered in Step 4 above

e.       Click on the ?extended application support? checkbox.

2.       In Discovery_CiscoCM, enter <hostname> in the ?Comma-separated list of primary CallManager servers? parameter.