LDAP. Strange work

Hello.

In the virtual machine (VMware ESXi 6) installed Debian 9.
Installed xwiki-tomcat8-pgsql.
Installed LDAP extension with the Extension Manager.

Add to /etc/xwiki/xwiki.cfg following properties

xwiki.authentication.authclass=org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl
xwiki.authentication.ldap=1
xwiki.authentication.ldap.trylocal=1
xwiki.authentication.ldap.server=jukola.office
xwiki.authentication.ldap.base_DN=dc=jukola,dc=office
xwiki.authentication.ldap.bind_DN=jukola\{0}
xwiki.authentication.ldap.bind_pass={1}
xwiki.authentication.ldap.UID_attr=sAMAccountName
xwiki.authentication.ldap.fields_mapping=name=sAMAccountName,last_name=sn,first_name=givenName,fullname=displayName,email=mail,ldap_dn=dn

Enable LDAP debugging in /etc/xwiki/logback.xml

logger name=“org.xwiki.contrib.ldap” level=“trace”

Restart tomcat8

Try to login with my domain account.
Success.
log.txt (5.3 KB)

Try to login with another account.
Fail.
log_fail.txt (8.6 KB)

Fail even when domain admin trying with his account.
Work only my account.
When use my log/pass as bind in xwiki.cfg all users can log in.

Have no idea how it fix.

Caused by: com.novell.ldap.LDAPException: Invalid Credentials

The server told XWiki that the login/pass you entered for that account are wrong.

Binding to LDAP server with credentials login=[jukola\bozhko2]

You already indicated the domain part in your configuration (jukola\{0}) prefix so you should only use “bozhko2” in the login form.