I'm trying do add a new user federation provider for integrate keycloak with a ldap server.<div><br></div><div>The parameters:</div>Console display name -> Active Directory<div>Priority -> 0</div><div>Edit Mode -> READ_ONLY</div><div>Sync Registrations -> OFF</div><div>Vendor -> Active Directory</div><div>Username LDAP attribute -> sAMAccountName</div><div>User Object Classes -> person, organizationPerson, user</div><div>Connection URL -> ldap://<a href="http://dom.example.com:389">dom.example.com:389</a></div><div>Base DN -> DC=dom,DC=example,DC=com</div><div>User DN Suffix -> CN=Users</div><div>Bind DN -> CN=Keycloak.LDAP;CN=Users;DC=dom,DC=example,DC=com</div>Bind Credential -> ********<div>Connection pooling -> ON</div><div>Pagination -> ON</div><div>Enable Account After Password Update -> OFF</div><div>Batch Size -> 100</div><div>Periodic Full Sync -> OFF</div><div>Periodic changed users sync -> ON</div><div>Changed users sync period -> 86400</div><div><br></div><div>I tried change User DN Suffix to only Users, but it not works. The log always saying:</div><div>LDAP: error code 1 - 000020D6: SvcErr: DSID-031007DB, problem 5012 (DIR_ERROR)</div><div>And it says this when it tries to parse the User DN Suffix.</div><div><br></div><div>Theres something wrong with my conf?</div><br><br>-- <br><div dir="ltr">Ayrton Araújo<br><div><font face="'trebuchet ms', sans-serif"><font size="1">"If you can tell the false from the true </font><span style="font-size:x-small">you are already a scientist."</span></font></div><div><br></div><div>--<br><div><a href="http://ayr-ton.net/" target="_blank">http://ayr-ton.net/</a></div></div></div><br>