I am running Alfresco Community Edition 201702 and trying to get ldap-ad authentication to work to my liking. I would like Alfresco to synchronize with our Active Directory, but only allow users of a specific group (AlfrescoUsers) to login to Alfresco, and deny any other login attempts.
Currently, I have synchronization working, and I can login to Alfresco with AD users. My problem is, is that any user can login that is in AD, not just the members of the AlfrescoUsers security group I created.
Does anyone have any insight into why all users in AD are allowed to login, and not just users of the AlfrescoUsers security group?
I have attached my alfresco-global.properties that I have all of my configuration in, and also the synchronization section of alfresco.log