Major Description
If you use SEARCHANDBIND method in LDAP auth type, OM makes only a onelevel search because the search scope is hardcoded in LdapLoginManagement class (src/main/java/org/apache/openmeetings/ldap/LdapLoginManagement.java, line code 237).
EntryCursor cursor = conn.search(baseDn, searchQ, SearchScope.ONELEVEL, "*");
It would be a good idea to include a searchScope variable in om_ldap.cfg where you can define the scope of the search: OneLevel or SubTree.
In my ldap server, the users are stored in different branches of the ldap tree, so onelevel search only will find the users stored just one level below the base to search.
Best regards.