I had issues trying to setup ActiveDirectory auth. I think I traced them to these lines from the LDAP Guide
he base DN describes where to load users and groups. If you’re using a default Active Directory setup, all user accounts and groups are located in the “Users” folder under your domain. In LDAP form, that’s
cn=Users;dc=<Your Domain>. To get more specific, say your domain is
activedirectory.jivesoftware.com. In that case, your base DN would be
cn=Users;dc=activedirectory,dc=jivesoftware,dc=com. If you’ve customized where users are stored, you’ll just need to replicate that folder structure using LDAP syntax.
Note the semicolon after cn=Users. I’m not an ActiveDirectory or LDAP expert by any measure but I think those should be commas. To be honest, I wasn’t 100% scientific in my research.
Can anyone else verify?