User Mapping / User Filter

I’m having problems nailing down the syntax of a user filter.

Server: OpenFire 4.0.1

AD: 2008 R2, with functional level @ 2008 R2

I’ve set the base DN to be my overall domain


Because of this I’m pulling in ALL users, but I only desire to have a subset of users available for use within Openfire.

I created a global security group called Openfire. I created an OU called Openfire. The global security group Openfire has been placed in the OU.Openfire. Running the dsquery command against the group I get the following output:


Username Field: sAMAccountName

I used the following filter, but it didn’t work:

(&(objectClass=organizationalPerson)(|(memberOf=cn=Openfire,ou=Openfire,dc=acme, dc=glass,dc=local)))

Error message: No users were found using the specified configuration. Try changing the base DN, user filter or username field.

Appreciate the help.

give this thread a quick look.

How to Setup Authentication Groups with LDAP/AD