Hi all …
First, sorry for my bad english, i hope you can understand my post and can help me to fix a problem that we have on our openfire. I have search a lot of discussions on this forum, but haven’t find some solution for my problem.
Our specs:
-
W2k3 AD Domain “domain.com” with subdomain “sub.domain.com”
-
Openfire 3.5.0 hosted on Opensuse 10.2, which is member of the domain
-
openfire.xml attached bottom on this Post
- Logon to Openfire over AD Accounts aren’t the problem, this will work great
Problem:
We have AD groups on our directory, for every organizational Unit, like the following one’s:
-
Unit1_dept
-
Unit2_dept
-
… etc.
This groups are nested groups, inside will be all subunits of the unit1 with the users of this unit (we have 9 main-units but approx. 10-15 subunits per unit).
We have decided, that we want make new groups for Openfire, that name will start with “Openfire …” Inside this groups we want nest unit groups. This will work, but when i nest 2 groups to the new “Openfire …” group, so users arent visible countercross in this group. we have setup, that roster will be shared to all users, but it aren’t visible. only when i put users directly in the “Openfire …” group they will be visible to another users that are in this group and in the nested groups.
Hope you understand this, and can give us a little trick or help to fix this… and thanks for your help …
Here the config of our openfire…
<database>
<defaultProvider>
<driver>com.mysql.jdbc.Driver</driver>
<serverURL>jdbc:mysql://chsts052:3306/openfire</serverURL>
<username>user</username>
<password>pass</password>
<testSQL>select 1</testSQL>
<testBeforeUse>true</testBeforeUse>
<testAfterUse>true</testAfterUse>
<minConnections>5</minConnections>
<maxConnections>15</maxConnections>
<connectionTimeout>1.0</connectionTimeout>
</defaultProvider>
</database>
<ldap>
<host>172.16.4.3</host>
<port>389</port>
<baseDN>dc=sub,dc=domain,dc=com</baseDN>
<adminDN>user@sub.domain.com</adminDN>
<adminPassword>password</adminPassword>
<connectionPoolEnabled>true</connectionPoolEnabled>
<sslEnabled>false</sslEnabled>
<ldapDebugEnabled>false</ldapDebugEnabled>
<autoFollowReferrals>false</autoFollowReferrals>
<usernameField>sAMAccountName</usernameField>
<searchFilter>(objectClass=user)</searchFilter>
<vcard-mapping><![CDATA[
<nameField>cn</nameField>
<emailField>mail</emailField>
<groupNameField>cn</groupNameField>
<groupMemberField>member</groupMemberField>
<groupDescriptionField>description</groupDescriptionField>
<posixMode>false</posixMode>
<groupSearchFilter>(cn=Openfire*)</groupSearchFilter>
<searchFields>cn</searchFields>
</ldap>