powered by Jive Software

Group Mapping to location other than BaseDN

In my AD structure I have groups set up in a location that is different than in the location of my User accounts. Thus, this location is different from where my BaseDN searches.

Is there anywhere, via GUI or manaully editting the configs, to tell Openfire to search for groups in a different location than the specified BaseDN.

(please say “yes”)

From the documentation (http://www.igniterealtime.org/builds/openfire/docs/latest/documentation/ldap-gui de.html#activedirectory):

ldap.alternateBaseDN – a second DN in the directory can optionally be set. If set, the alternate base DN will be used for authentication, loading single users and displaying a list of users. Content in the base DN and the alternate DN will be treated as one.

Hope this helps!

the alternate base dn may work but I would say expand your basedn and use filters instead to limit users.

I ended up just adjusting my BaseDN to include the Users OU AND the Groups OU. Problem solved