Permissions Set By the Cisco Unity
Permissions Wizard If You Are Using Domino
Permissions Set for the Installation
Account
Permissions Set for the Directory
and Message Store Services Account
Permissions Set By the Cisco Unity
Permissions Wizard If You Are Using Exchange 2000
Permissions Set for the Installation
Account
Permissions Set for the Directory
Services Account
Permissions Set for the Message
Store Services Account
Permissions Set By the Cisco Unity
Permissions Wizard If You Are Using Exchange 5.5
Permissions Set for the Installation
Account
Permissions Set for the Directory
and Message Store Services Account
Permissions Set By the Cisco Unity Permissions Wizard If You Are Using Domino
Permissions Set for the Installation Account
User Rights
The installation account is granted the following user rights:
Log on as a service
Act as part of the operating system
Log on as a batch job
Group Membership
The installation account is added to one of the following groups:
The Administrators group, when the Cisco Unity
server is a domain controller
The Local Administrators group, when the Cisco
Unity server is not a domain controller
Permissions Set for the Directory and Message Store Services Account
User Rights
The directory and message store services account is granted the following user rights:
Log on as a service
Act as part of the operating system
Log on as a batch job
Group Membership
The directory and message store services account is added to one of the following groups:
The Administrators group, when the Cisco Unity
server is a domain controller
The Local Administrators group, when the Cisco
Unity server is not a domain controller
Permissions Set By the Cisco Unity Permissions Wizard If You Are Using Exchange 2000
Permissions Set for the Installation Account
User Rights
The installation account is granted the following user rights:
Log on as a service
Act as part of the operating system
Log on as a batch job
Group Membership
The installation account is added to one of the following groups:
The Administrators group, when the Cisco Unity
server is a domain controller
The Local Administrators group, when the Cisco
Unity server is not a domain controller
Active Directory Permissions
If
any Exchange 2000 users will be Cisco Unity subscribers (regardless of whether
any Exchange 5.5 users will also be Cisco Unity subscribers), Cisco Unity
Permissions Wizard sets the following permissions for the installation account.
Container |
Permission |
|
Where
new users are created |
Applied onto this object only
Applied onto User objects
Applied onto Contact objects
|
|
Where
new groups are created |
Applied onto this object only
Applied onto Group objects
|
|
Where
Cisco Unity location objects are created |
Applied onto this object and all child
objects
Applied onto CiscoEcsbuUMLocation objects
|
|
Where
Cisco Unity Bridge contacts (if any) are created |
Applied
onto this object and all child objects. Set only if Cisco Unity will use the
Cisco Unity Bridge.
Applied onto contact objects. Set only if Cisco Unity will use the Cisco Unity Bridge.
|
|
Where
imported objects are imported from |
Applied onto User objects
Applied onto Group objects
Applied onto Contact objects
|
|
Root
container in the Cisco Unity server’s home domain |
Applied onto this object and all child
objects
|
Permissions Set for the Directory Services
Account
User Rights
The directory services account is granted the following user rights:
Log on as a service
Act as part of the operating system
Log on as a batch job
Group Membership
The directory services account is added to one of the following groups:
The Administrators group, when the Cisco Unity
server is a domain controller
The Local Administrators group, when the Cisco
Unity server is not a domain controller
Active Directory Permissions
If any Exchange 2000 users will be Cisco Unity subscribers (regardless of whether any Exchange 5.5 users will also be Cisco Unity subscribers), Cisco Unity Permissions Wizard sets the following permissions for the service account.
|
Container |
Permissions |
|
Where
new users are created |
Applied
onto this object only. Set only if creating users via Cisco Unity
Administrator is allowed.
Applied onto this object only. Set only if creating contacts via Cisco Unity Administrator is allowed.
Applied onto User objects
Applied onto Contact objects
|
|
Where
new groups are created |
Applied
onto this object only. Set only if creating groups via Cisco Unity Administrator
is allowed.
Applied onto Group objects
|
|
Where
Cisco Unity location objects are created |
Applied onto this object and all child objects
Applied onto CiscoEcsbuUMLocation objects
|
|
Where
Cisco Unity Bridge contacts (if any) are created |
Applied
onto this object only. Set only if Cisco Unity will use the Cisco Unity
Bridge.
Applied onto Contact objects. Set only if Cisco Unity will use the Cisco Unity Bridge.
|
|
Where
imported objects are imported from |
Applied onto User objects
Applied onto Group objects
Applied onto Contact objects
|
|
Deleted
Objects |
Applied onto child objects in every domain
that contains Cisco Unity subscribers or groups
|
Permissions Set for the Message Store
Services Account
User Rights
The message store services account is granted the following user rights:
Log on as a service
Act as part of the operating system
Log on as a batch job
Group Membership
The message store services account is added to one of the following groups:
The Administrators group, when the Cisco Unity
server is a domain controller
The Local Administrators group, when the Cisco
Unity server is not a domain controller
In addition, the message store services account is added to the Exchange Domain Servers group.
Caution! The account that owns Cisco Unity message store services cannot be a member of the Domain Admins group or be an Exchange 2000 administrator.
Exchange Permissions
The message store services account is granted the following permissions on every Exchange 2000 mailstore in the Exchange organization:
Send-As
Receive-As
Permissions Set By the Cisco Unity Permissions Wizard If You Are Using Exchange 5.5
Permissions Set for the Installation Account
User Rights
The installation account is granted the following user rights:
Log on as a service
Act as part of the operating system
Log on as a batch job
Group Membership
The installation account is added to one of the following groups:
The Administrators group, when the Cisco Unity
server is a domain controller
The Local Administrators group, when the Cisco
Unity server is not a domain controller
Permissions Set for the Directory and Message Store Services Account
User Rights
The directory and message store services account is granted the following user rights:
Log on as a service
Act as part of the operating system
Log on as a batch job
Group Membership
The directory and message store services account is added to one of the following groups:
The Administrators group, when the Cisco Unity
server is a domain controller
The Local Administrators group, when the Cisco
Unity server is not a domain controller
Revision History
1.0.0 – Initial version.
© 2002 Cisco Systems, Inc. -- Company Confidential