powered by Jive Software

AD Users and Groups in different containers


I have AD with the following structure:



---- cn=aaa

---- cn=bbb

---- cn=ccc

---- cn=users

-------- cn=admins

-------- cn=users

-------- cn=group1

-------- cn=group2

-------- cn=group3

---- ou=mycompany

-------- ou=department 1

---------------- cn=user1

---------------- cn=user2

---------------- cn=user3

-------- ou=department 2

---------------- cn=user4

---------------- cn=user5

I have the **baseDN **property set to OU=mycompany,DC=my,DC=domain,DC=ru. All works fine, but I can’t see groups in Openfire admin console.

There is no actual user objects in *users *group, and there is no *member *attribute in department containers (because it is not a group object ).

When I set baseDN property to DC=my,DC=domain,DC=ru I can’s get to Openfire admin console (but users still able to connect).

Please, help.

All installed on Windows Server 2008 R2 + MS SQL Server 2008 R2. Openfire version 3.8.0.

Sorry for my english.

You can’t use an OU as a group - You’re going to have to actually define groups in AD and have Openfire search those.

Thank you. I don’t want to use OU as a group. I’m asking may be there are some other ways to make Openfire look for admin users in subfolder like ou=mycompany? Some property or searchFilter settings?