It seems i was looking to far into that situation. Now i am past that area, but i am only pulling a couple random admin accounts as users. Not the actual user list.
something is not pointed in the correct spot. Any ideas?
I just set up my Openfire server with the users searching from the root since users are all over the tree. As far as groups we made specific IM groups for each dept, then added all the users to the im department groups, and only shared those groups with all the users so everyone sees everyone when logged in.
Are you using NT groups? If so after I added a new user to it i had to restart the openfire server for it to pick that up. You may want to try that. If not can you be a bit more specific about how you made the groups? I also used specific usernames and not groups in my groups.
You could share the domain users group. Just enable contact list group sharing, Give it the name you want to use. Check the box for share with additional users and then select all users. Hit save and you should be golden. This is all done after clicking on a group.
I have no idea at this point and can only guess that your ldap isnt quite functioning properly. Maybe trying clearing the group and group metadata cache? I only just started using this myself last week.
Please post your openfire.xml file. I doubt there is anything wrong with your LDAP servers. This is most likely a openfire configuration issue. Your openfire.xml file contains all this config data. Just be sure to modify passwords for security purposes.
Ok so I fixed your AD vCard mappings and the namefield setting to be correct for AD. Beyond that it looks correct. Make sure your baseDN that you set contains all OUs that have user accounts or groups you wish to include in openfire. Anything outside that baseDN with not show in openfire.
You should not need to create groups specific for Openfire in AD. That being said I have found it minimizes the errors with LDAP integration with AD when I did. I purposefully restructured my AD to be more friendly to LDAP integrated apps, which inturn also made management by group policy easier. Reorganizing your AD tree is simple and if done with care causes no issues. I have attached an image with my AD layout. Note the ChatGroups are in the same OU as all the accounts (the ones used for chat at least).