I have users listed across multiple OU's. I just configured Nexus Professional's LDAP plugin and was forced to specify a common superset OU that pulled in users that I wasn't interested in. This wasn't an optimal solution but it works. Is this acceptable configuration for TeamCity LDAP as well?
Here's an example to illustrate:
OU=organization A,OU=XYZ Companies,OU=Corporate
OU=organization B,OU=XYZ Entities,OU=ABC,OU=Corporate
Since they all share "OU=Corporate", I was able to specify that as a base DN and obtain the correct users.
Should this work? It's hard to evaluate what the problem is by only examining LDAP logging output, so I don't know if this is the issue or if it's something else.