We're using AD, and I have verified that we can actually pull the users and groups by logging in as the initial admin and checking the users. It shows the users and the LDAP groups we assigned. Looks fine there.
When a user goes to login with their domain account, it says invalid username and password. So if their domain account is like this: LOCALSITE\john.smith I expect them to be able to put "john.smith" in the username field. These are the search settings: Search Filter: (CN={0}) Identity Strategy: USE_USERNAME Based on the documentation, I would expect that that would take the username and password, put the username into the CN attribute of the search filter and filter on the search base (exact copy of the one that is working in the user/group search configuration). Any suggestions on what might be wrong and/or how to debug this? Thanks, Mike