I am running Openfire in an Active Directory domain environment. Access is limited to local ip’s, and authentication is thru the embedded database utilizing Active Directory in read only mode.
I have some groups that I do not want to be able to communicate with each other. I have only shared the groups with other groups that are allowed to see them. So they are in effect isolated from each other, which is what I want. However a user (using Spark), can click on add a contact, and, if they now the syntax, can add a user from one of the other isolated groups (they may not know to put the user@IMSERVER.domain.com.
So, after all of that, my question is how can I stop the users from adding contacts from other groups. If this cannot be done, can I implement rules using a packet filter to silently drop those packets?
Thank you for your help