APEX

Hello,

I have been hitting my head against this problem for awhile now... and have had very little success.

What i am trying to do is have my application authenticate via our Active Directory Server (LDAP). I have managed to get as far as giving every user in Active Directory the ability to logon. What i want, however, is only a select group to login, not the whole domain.

Here is what i have so far for Authentication (LDAP):
HOST: [Server Name]
Port: 389
No SSL
Use Exact DN: [Domain]\%LDAP_USER%


As i said this works fine for all users in Active Directory but i am lost in trying to get only a specific group to have access.


I have tired all manner of DN strings (and have had trouble with all that i have tried) as well as some code in the Login Page using the APEX_LDAP functions. These functions would work, i believe, but they keep returning an error:
ORA-31202: DBMS_LDAP: LDAP client/server error: Invalid credentials. 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1db0

Considered using the Post-Authentication Process for this but am not sure...


Any Help on this would be great!!

--Orc