solved (hope this helps any other sufferers) Watka Naidoo 1.Jan.09 09:38 AM a Web browser Server 8.0.1Windows
I think it's important to get the configuration right first time - it doesn't look like you can change some of the settings afterwards.
step 1. Set up DA in Notes, and specify username in the format CN=Fname Lname,OU=...,OU=...,DC=domain,DC=com EXACTLY as it appears in Active Directory. Make sure you can verify the AD and credentials.
step 2 - set up LDAP in ST ADministration
Administrator distinguished name EXACTLY the same as in DA
Port = 3268
In Basics, the setting that work for me (after many tries are)
Scope = subtree
Attribute of the person entry = sAMAccountName
Attribute used to distinguish = cn
Entry that defines the person's e-mail address = mail
object class = Person
search filter = (&(objectClass=person)(|(cn=%s)(givenname=%s)(sn=%s)(mail=%s)(sAMAccountName=%s)))
filter for resolving person names = (&(objectclass=person)(|(cn=%s*)(givenname=%s*)(sn=%s*)(mail=%s*)(sAMAccountName=%s*)))
filter for resolving group names = (&(objectclass=groupOfNames)(cn=%s*))