Hi everybody!
I using Openfire 3.5.0 on Linux Debian Etch JVM - 1.5. User base is MS AD, without Exchange.
In AD created group inside of BASE DN of my domain , example “GroupA” (DN of “GroupA” looks like this “CN=GroupA, OU = orgUnit2, OU = orgUnit1, DC=mydomain, DC=local”) , with some users. “GroupA” shared witn anoter groups in Openfire.
Trouble is: Openfire can’t see some users from this group. I go to at User/Groups -> Group in admistration console, then find “GroupA” and look list of users in it. List of users in console differ from original in AD. Openfire exlude 2 users (example User1 and User2) from origin group.
Also i find in Openfire support community Questions and issues similar my issue. Most fully thread are
We use special chema for names of account in AD: CN of “User1” look like this: “Lastname FirstName Initial”
I tried to rename “User1” “Lastname FirstName Initial” to “Lastname FirstName_Initial” (rename operation in MS AD is change CN value in LDAP), and “User1” appers in “GroupA” in Openfire admin console.
Then I return CN of “User1” to previous value (“Lastname FirstName Initial”) and… “User1” successfully disappear from “GroupA” in Openfire http://www.igniterealtime.org/community/images/emoticons/confused.gif
Manipulate with CN (renaming in AD) of “User2” takes no result for “GroupA” in Openfire.
Interesting fact: User1 ang User2 can succsessull logon always.
When OpeFire normally see “User1” in “GroupA”, roster of User1 fill witn ietms from shared for “GroupA” groups.
Also i cant find “User2” in list of all user (User/Groups page of console) recommended here: http://www.igniterealtime.org/community/message/155351#155351
What must i do for resolve this issue?
Renaming or changing values of some fields in user account entry of AD is wrong way, becouse it is temporary action.
Best wishes!