After the successful install, my colleague tried to log in.
He couldn't use his AD user, because he's got a message:
Please check whether the given base dn is correct.
We are in the same Group in MS AD. If he miss his password, he get an another message:
Could not authenticate to the LDAP server.
What is problem? He can connect with superuser...
We tried to reconfig LDAP settings, before I wrote here.
We have tried to setup with his actual logon AD server... Same...
Interesting, If we make authenticate with his user, it seems that "query" has been worked, but not the login! :_|
(Port: 389 , LDAP Limit 6000.)
It seems, the problem origin came from the localized AD group names, with special (hungarrian) characters usage in the AD groups, not from the size of the group of membership counts.
We are testing it...