powered by Jive Software

Active Directory Limiting Access

Is there a way to limit the users who can use Openfire? I want to connect it to my Active Directory for authentication, but don’t want all 1200 users to have access to it.

When you setup your LDAP connection, create a filter for the users that limit what groups can login. You can then specify that only users on the IM Users Group would populate your list.

I am currently moving from LDAP to AD authentication. Create a group in AD for those users you want to have access then in your search filter use something like this: “(]>” if you have multiple trees you will need to have an ‘or’ statement represented by a | (pipe) such as (|(memberof=CN=group1,OU=…)(memberor=CN=group2,ou=…)) … Hope this helps you.


there is supposed to be a CDATA tag in there, but the forum is making a link out of it…