But a new server that uses LDAP also required me to add an OU called GLOBAL in my active directory, and I had to move those users into that OU to make it work. Now the users in the OU cannot log into Openfire. Can anyone point me in the right direction as to how to change the setting so that these users can log into Openfire as well. Obviously I have limited knowledge of how LDAP works. Thanks in advance!