LDAP searchFilter?

Hello!

OpenFire 3.6.4
Authorization LDAP AD Windows 2003
I do not understand why not working:
ldap.searchFilter = (& (objectClass = organizationalPerson) (memberOf = CN = Jabber))
My login group Jabber is, but when you connect returns "Invalid user name or password"
If:
ldap.searchFilter = (& (objectClass = organizationalPerson) (cn =*)) it works.

I would like to have a server that has only worked with recordings of several groups.

How can this be done?

The ldap search filter needs to include the full path for the object e.g.:

ldap.searchFilter = (& (objectClass = organizationalPerson) (memberOf = CN = Jabber,cn=users,dc=domain,dc=local))

Also memberof cannot include wildcards so

memberOf = CN = Jab*,cn=users,dc=domain,dc=local

would not work.

These are ldap restrictions NOT Openfire.

Thank you very much!