Preparing an Enterprise LDAP Including Active Directory
If your site has special requirements that force it to define the site administrator in the enterprise LDAP or Active Directory Server, note the following:
• If you are binding to a Read Only LDAP repository, the user you choose must have the "uid=Administrator" attribute.
• If you are binding to a Read/Write LDAP repository, the user specified will be assigned a "uid=Administrator" attribute. There can only be one user with the "uid=Administrator" attribute in both the administrative and enterprise user Distinguished Names.
• If you are going to specify an existing user for your site administrator, this user cannot be assigned to an organization (a value specified for the "o" attribute) in the LDAP repository.
• Using the existing user as a Site Administrator for Active Directory Server is not supported.