Another LDAP question

I’ve finished installing 3.6.4 and I’m running into something strange after configuring the LDAP settings. First, some background info. I’m using AD, I have an OU, App-Openfire, that has my admin user and a security group, Openfire Users, in it. There are 40 members in the Openfire Users group.

It looks like:

|_ DC=domain,DC=local

|_ OU=stuff

|_ OU=things

|_ OU=App-Openfire

|_ CN= Open Fire

|_ CN= Openfire Users

I’m setting Base DN to ‘ou=App-Openfire,dc=domain,dc=local’, and I’m able to successfully connect when I test the settings. I have left User Mapping to the default values, when I test settings I see my admin user. I’ve also left the Group Mapping set to the defualt settings and when I test those settings I see my Openfire Users group and it reports to have 40 members.

Now for the wierdness. I save my settings and look at the Users and Groups in the console and I can see my admin user but when I look at the groups my Openfire Users group only has 1 user and it’s the default Windows administrator account (the path is cn=administrator,cn=users,dc=domain,dc=local@domain.local).

Can anyone please tell me what I’m doing wrong?

this is how I like to do it

http://www.igniterealtime.org/community/thread/42044?tstart=0

Thanks so much. Tweaking the ldap.groupSearchFilter did it.