Hello All,
 
I'm having trouble integrating GateIN with LDAP.  I've follwed the instructions here: https://community.jboss.org/wiki/GateInwithLDAPasadefaultuserandgroupstore.
 
When I make my ctxDNs point to the following OU:
 

Just the Generic User shows up in the Organization Management:
 

I found a post which instructs me to add the following options to the picketlink xml
 
<option>
<name>entrySearchScope</name>
<value>subtree</value>
</option>
 
This pulls in all the users - but I get these errors in the log for each local user:
 
SEVERE: Failed to find IdentityObject in target store: 
org.picketlink.idm.common.exception.IdentityException: Found more than one identity object with name: demo; Posible data inconsistency
 
The Ldap users are also missing there name and email:
 

 
I then removed the entry scope parameter and changed the ctxDNs to one of the sub OUs.  I had the same problem as above.  I don't know if picketlink can handle sub OUs or if it is a memory issue (why would the local users be found twice?  Recursive loop bug?).
 
If anyone else has ran into this and has found a solution - let me know.
 
Thanks,
 
Shannon Sumner