Can we lock out user by default with LDAP authentication?

 I'm using Openfire 3.6.0 with LDAP authentication, but by default every user from LDAP server is enable in Openfire. To have better user control, we hope to set users as locked out by default, so is there any way to get it?

Thanks.

The users that are llowed to access the server are entirely based on your baseDN and what filters you apply. You can simply create a group in your LDAP for valid chat users (i.e. ChatUsersGroup). Then create a user filter that requires membership in that group. Here is a sample filter:

(&(objectClass=organizationalPerson)(memberOf=cn=WebISteam,ou=ChatGroups,ou=acco unts,dc=domain,dc=com))