Can't configure empty base-dn for ldap realm -------------------------------------------- Key: WFCORE-1153 URL: https://issues.redhat.com/browse/WFCORE-1153 Project: WildFly Core Issue Type: Bug Components: Management, Security Affects Versions: 2.0.2.Final Reporter: Alberto Persello Assignee: Sonia Zaldana Priority: Major Labels: authentication, authorization, group, ldap, realm It is not possible to set the empty value for base-dn attribute in authentication-->ldap element and in authorization-->ldap-->group-search-->group-to-principal element. The empty value is the only valid option for java ldap searches to scan the entire ldap (the equivalent of RootDSE).