base dn = dc=realm1,dc=openam,dc=forgerock,dc=org
I can see top-level/others realms users!!! ,but i do not want.
users of top-level/others realm is not visible which is my goal, but I can not add user/group for this realm, my settings is:
LDAP People Container Value: realm1,ou=people
LDAP Groups Container Value: realm1,ou=groups
the error while create user/group:
console : Plug-in org.forgerock.openam.idrepo.ldap.DJLDAPv3Repo: Unable to find entry: Entry uid=user1,ou=realm1\,ou=people,dc=openam,dc=forgerock,dc=org cannot be added because its parent entry ou=test1\,ou=people,dc=openam,dc=forgerock,dc=org does not exist in the server
another things I’d like to talk about which also does not make sense is that when set Base DN = u=people,ou=finance,dc=example,dc=com, then it seems can not have groups. as usually Base DB is a parent container for people and groups, but now we mention it is just for people (starting part).