I've seen that a number of people are having trouble with users successfully logging in, but not showing up in the contact list of other users. I wanted to share my fix.
With the original account settings, he showed up in the Operations group I had shared with all other users.
Settings:
User: Executive Director
Groups: Administration, Operations, Domain Users
Primary Group: Administration
In the process of cleaning up Active Directory, I removed the administration group, and changed his primary group membership. After this change, he no longer shoed in anyone's contact list
Settings:
User: Executive Director
Groups: Operations, Domain Users
Primary Group: Operations
Looking at his user account, OpenFire did not even recognize that he was a member of Operations. He did not appear in anyone's contact list, even though the server showed an active session.
When I reconfigured his Active Directory account he reappeared. (I restarted this server after this step, but it may have been unnecessary)
Settings:
User: Executive Director
Groups: Operations, Domain Users
Primary Group: Domain Users
I hope this helps someone, as there seems to be a longstanding issue with some LDAP accounts not showing up in