I’m running OpenFire 3.6.2 on Linux Redhat installed from the tar.gz file. We are using Windows ActiveDirectory (LDAP) as our authentication method and it has been working fine using my account (let’s say user1) for the admin account. Admin account here is the Adminstrator DN asked during the wizzard in LDAP setup 2nd screen.
My IT environment is beyond my control and they require us to change our password periodically. everytime I update password for user1, I need to reconfigure Openfire all over again. To remedy this problem, the IT person created a pseudo account with read-only access, this account is called openfire.admin (or CORP\openfire.admin).
I met nothing but problems when trying to setup Openfire with this pseudo account as Administrator DN. The first screen test button will return success but the subsequent screens will yield failure (user mapping screen and group mapping screen). It may have to do with the hierarchy of the user in LDAP
user1 and other users that needs account are in OU=Engineering, openfire.admin is located under OU=Service Account which is a child of OU=Engineering. If I use user1 account as Adminstrator DN, Openfire can find all the users, if I use openfire.admin, it throws me fits.
Any suggestion to fix this issue? Thanks in advance.