Hi,
I cannot automagically see the users recently added in the ldap either in the openfire web admin ui or the spark client. However if I query for the user using advance user search option, I can see the users. This also happens for the group queries. All the users in the ldap share the same objectclass and are member of the primary group users and then members of various other groups also. The newly created users can login from the spark. My search filters used in the openfire.xml are
<ldap>
<host>1.2.3.4</host>
<port>389</port>
<baseDN>dc=example,dc=com</baseDN>
<adminDN>cn=Manager,dc=example,dc=com</adminDN>
<adminPassword>password</adminPassword>
<connectionPoolEnabled>true</connectionPoolEnabled>
<sslEnabled>false</sslEnabled>
<ldapDebugEnabled>true</ldapDebugEnabled>
<autoFollowReferrals>true</autoFollowReferrals>
<usernameField>uid</usernameField>
<searchFields>Username/uid,Name/displayName</searchFields>
<nameField>cn</nameField>
<emailField>mail</emailField>
<searchFilter><![CDATA[(&(|(objectClass=sambaAccount)(objectClass=sambaSamAccount))(objectClass=posixAccount)(!(uid=*$))(!(uid=root)(!(uid=subbu))(!(uid=nobody))(!(uid=guest))((uid={0})))))\]\]\></searchFilter>
<groupNameField>cn</groupNameField>
<groupMemberField>memberUid</groupMemberField>
<groupDescriptionField>description</groupDescriptionField> <groupSearchFilter><![CDATA[(&(|(objectClass=posixGroup)(objectClass=sambaIdmapEntry))(!(cn=*$))((cn={0}))))\]\]\></groupSearchFilter>
<clientSideSorting>true</clientSideSorting>
<posixMode>true</posixMode>
</ldap>
The system properties are :
cache.ldap.maxLifetime=120000
cache.ldap.size=131072
cache.username2roster.maxLifetime=120000
cache.username2roster.size=131072
ldap.authCache.enabled=false
ldap.override.avatar=true
register.inband=false
register.password=hidden
update.lastCheck=1202306072440
xmpp.audit.active=true
xmpp.audit.days=-1
xmpp.audit.filesize=10
xmpp.audit.iq=false
xmpp.audit.logdir=/opt/openfire/logs
xmpp.audit.logtimeout=120000
xmpp.audit.message=true
xmpp.audit.presence=false
xmpp.audit.totalsize=1000
xmpp.auth.anonymous=false
xmpp.client.compression.policy=optional
xmpp.domain=email.mobiapps.com
xmpp.server.compression.policy=optional
xmpp.session.conflict-limit=0
xmpp.socket.ssl.active=true
For ref: I am using openldap-2.2.13-8.el4_6.2 coupled with samba and openfire-3.4.4-1
How should we resolve this issue of ldap users not being seen either in the web ui / spark client’s roster
Regards
Prashant