So this wasnt an issue of one user can login and another can't it was that if a user is specified "usernam is" LDAP login worked great. But my issue was that I could not specify groups. Anywho, I figured out what the issue was. Quit simple really. In role mapping I overlooked the update button. Silly design and silly me really. So when you creat a new role and click the drop down to select "Rule is based on:" and click "Group Memebership" you have to click update button to view available groups and from there you can create groups. : ' ) As long as your LDAP look ups are working your DN info should populate.
... View more
