powered by Jive Software

Issues with LDAP config

My AD name is (ad.amal.com.gh) and the below are my entry for the LDAP config

**Base DN **cn=Users;dc=ad,dc=amal,dc=com,dc=gh.

**Administrator DN **cn=Administrator,cn=users,dc=ad,dc=amal,dc=com,dc=gh.

after the above config when I test it I keep getting the below error

Test: Connection Settings

Status: Error

Error authenticating with the LDAP server. Check supplied credentials.

what am I not doing right please I urgent help.

I just finished setting this up and had similar problems.

My PDC hostname is ad1.domain.org

So my base DN is cn=users,dc=domain,dc=org (“ad1” is not part of my domain name)

All 3 of these worked for my administrator DN:




With the AD settings that you specified, try this:

Also, on the Server Settings page, make sure you set the domain = to your actual domain. If you don’t, it will cause problems when you go to create your admin account at the end of the setup.

Good luck!

you solution worked thanks so much sir!

After I had compeleted the steps this is the error I have been getting

  • Setup Progress
  • Language Selection
  • Server Settings
  • Database Settings
  • Profile Settings
  • Admin Account

Administrator Account

**No username was provided or the specified username was not found. **

Choose one or more users from your LDAP directory to be administrators by entering their usernames.

Even though the username I used is a user in the active directory.

Please any help.


it depends on your tree configuration. if you used cn=users,dc=domain,dc=com or something similar as your base DN you locked openfire to only look at the default Users container of AD. Best practices for AD is to not create new users in this container. My guess is your users are in a OU found elsewhere in the tree. Check your settings in the AD tool AD Users and Computers found on your domain controller.

use this as a guide: http://www.igniterealtime.org/community/docs/DOC-1554

@Todd Getz are saying I should creat a new user or what ? please help me to understand what exaclty I should do to it work.

Thank you.

you could also just have it read from the top


If all your users are not located in the default Users container in AD you need to remove that part of your baseDN. In other words delete the cn=Users, from the baseDN.