Our AD environment has users split up into multiple OU’‘s. When adding the to the wildfire.xml config, it won’'t search users down the tree… just the current OU that is specified in the baseDN.
I added a group called Jabber to that OU, to see if that would work, but only the users in the baseDN OU show up.
Any idea on this? I’‘ve also tried the tag with the OU’‘s where other users exist, and it still doesn’'t work. The only way it works is if users exist in the specific OU listed as the baseDN.
Try testing your search filters with LDAP Browser 2.6 http://www.ldapbrowser.com/. LDAP queries should traverse the sub-containers. I’‘m not sure why it’'s not working for you.
The search filters are working great. However, I did find that users outside of my context can log in fine, who are members of the group.
My context in AD contain’'s this… OU=Information Software / Technologies
Would the “/” be throwing off wildfire? It seems anyone outside of this can log in fine. However, when I add that OU as part of the baseDN, it works fine, except then my other users don’‘t show up because they’'re in other parts of the tree.
Interesting. I did find a bug relating to a “/” in a userDN, but not in an OU.