Misconfigured - no users in grps

Openfire Openfire Support
1

I will try to provide any info that can help solve this issue. Not being on this server slows the process down some.

We can search and add users from Spark. No groups or contact list is populated from the AD server. We think the users in the AD “Users” group are not getting pushed into our various groups. For instance, the “IT” group has 0 members being pulled from AD’s “Users” group.

Attached is a couple images of the OF setup.

From what i gather… it should be working

*We think the issue is on the AD side, but we know not how to configure a user/group/policy for this
XMLLightweightParser.diff (276 Bytes)

2

please post:

openfire.xml

screenshot of AD Users and Computers, tree expanded

Edit the domain info from these files for security.

3

here is the user topo, also the groups that are in OF but not populated.

let me know if any other data would be helpfull

4

Your BaseDN should be: <baseDN>OU=MyBusiness;DC=Syrtime;DC=local</baseDN>

Your AdminDN can be: <adminDN>services@Syrtime.local</adminDN>

All AD Groups that you wish to use should reside within the OUs: Distribution Groups and Security Groups (I would suggest eliminating the spaces in the names of those OUs). Any groups found in those OUs should be replicated to the Openfire server. Remember OUs are not groups. Groups are created with the OUs just like Users are.

5

Well that info seems to be what we have currently.

Any other ideas or areas of data i can show that might help?

on a side note, we dont really care what group has the users at this point, we just want the users to show in spark. a couple of the groups that have all users in them we have shared, -but still do not show any members in OF. /shrug

6

The case should not matter but it is different in my settings. I used capitals where you did not. Are there groups inside the Distibution and Security OUs?

7

I change the capitals just for kicks.

There are groups inside the Distribution & Sec OUs. -does this change anything?

8

There should be groups there. I was just making sure you had AD groups within your BaseDN. Can you provide screenshots of the errors? A picture is worth a thousand words after all.

9

here is my output.log from spark.

Debug is true storeKey false useTicketCache true useKeyTab false

doNotPrompt true ticketCache is null isInitiator true KeyTab is null

refreshKrb5Config is false principal is null tryFirstPass is false

useFirstPass is false storePass is false clearPass is false

Acquire TGT from Cache

Principal is BSantee@SYRTIME.LOCAL

Commit Succeeded

Debug is true storeKey false useTicketCache true useKeyTab false

doNotPrompt true ticketCache is null isInitiator true KeyTab is null

refreshKrb5Config is false principal is null tryFirstPass is false

useFirstPass is false storePass is false clearPass is false

Acquire TGT from Cache

Principal is BSantee@SYRTIME.LOCAL

Commit Succeeded

Debug is true storeKey false useTicketCache true useKeyTab false

doNotPrompt true ticketCache is null isInitiator true KeyTab is null

refreshKrb5Config is false principal is null tryFirstPass is false

useFirstPass is false storePass is false clearPass is false

Acquire TGT from Cache

Principal is BSantee@SYRTIME.LOCAL

Commit Succeeded

DirectSound Capture Supported = true

DirectSoundAuto: Committed ok

JavaSound Capture Supported = true

JavaSoundAuto: Committed ok

Service listing

Initialized

3

3

Initializing…Resolved

Failed to commit to JMFRegistry!

Looking for Audio capturer

DirectSound Capture Supported = true

DirectSoundAuto: Committed ok

Finished detecting DirectSound capturer

JavaSound Capture Supported = true

JavaSoundAuto: Committed ok

Finished detecting javasound capturer

4