Problem solved. I used BrowseLdapLoginModule.java, and pointed it where I wanted the search to start (i.e. Users level). Works great! :)
Can you elaborate on the BrowseLdapLoginModule? I can not find any documentation on that class.
Sure thing! Here's the source code (NOT mine):
Basically I just (note, this is for Win32):
1) Downloaded the JBoss 3.2.1 source code
2) Dropped BrowseLdapLoginModule.java into <jboss_src_dir>/security/src/security/src/main/org/jboss/security/auth/spi/
3) Ran <jboss_src_dir>/security/build.bat
4) Copied <jboss_src_dir>/security/output/lib/jbosssx.jar
into $JBOSS_HOME/server/default/lib/ and $JBOSS_HOME/server/all/lib/
The source code has a snippet of what to put in your login-config.xml file. Once I got stuff compiled and up, it wasn't long before it worked perfectly.
Have fun, and if you need more help - just post :)