Hey guys, I want to add LDAP users into the User Profile Configuration of Shared Services, but I could only get the LDAP User:administrator in user picker, see following: While I could get other LDAP Users in other web site: ------------------------------------------------- Also see the web.config SharedServices: <connectionStrings> <add name="SpiritCustomService" connectionString="LDAP://orientech.com" /> </connectionStrings> <membership defaultProvider="AspNetActiveDirectoryMembershipProvider"> <providers> <add name="AspNetActiveDirectoryMembershipProvider" type="System.Web.Security.ActiveDirectoryMembershipProvider,System.Web,Version=2.0.0.0,Culture=neutral,PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="SpiritCustomService" connectionProtection="Secure" applicationName="/_layouts/login.aspx" connectionUsername="Orientech\Administrator" connectionPassword="123" attributeMapUsername="sAMAccountName" /> </providers> </membership> <roleManager enabled="true" defaultProvider="AspNetSqlRoleProvider"> <providers> <remove name="AspNetSqlRoleProvider" /> <add connectionStringName="AspNetSqlProvider" name="AspNetSqlRoleProvider" type="System.Web.Security.SqlRoleProvider, System.Web,Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" applicationName="/" /> <add name="LdapRoleProvider" type="Microsoft.Office.Server.Security.LDAPRoleProvider, Microsoft.Office.Server, Version=12.0.0.0, Culture=neutral, PublicKeyToken=71E9BCE111E9429C" server="http://orientech.com" port="389" useSSL="false" groupContainer="DC=orientech,DC=com" groupNameAttribute="cn" groupMemberAttribute="member" userNameAttribute="sAMAccountName" dnAttribute="distinguishedName" groupFilter="(ObjectClass=group)" scope="Subtree" /> </providers> The other web site: <!--Membership Provider--> <membership defaultProvider="AspNetActiveDirectoryMembershipProvider"> <providers> <add name="AspNetActiveDirectoryMembershipProvider" type="System.Web.Security.ActiveDirectoryMembershipProvider,System.Web,Version=2.0.0.0,Culture=neutral,PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="SpiritCustomService" connectionProtection="Secure" applicationName="/_layouts/login.aspx" connectionUsername="Orientech\Administrator" connectionPassword="123" attributeMapUsername="sAMAccountName" /> </providers> </membership> <!-- role provider --> <roleManager enabled="true" defaultProvider="AspNetSqlRoleProvider"> <providers> <remove name="AspNetSqlRoleProvider" /> <add connectionStringName="AspNetSqlProvider" name="AspNetSqlRoleProvider" type="System.Web.Security.SqlRoleProvider, System.Web,Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" applicationName="/" /> </providers> </roleManager> ---------------------------------------------- Is there any other parts in the web.config could affect the user picker results? And also see the "LDAP Typed" Link I added in SharedServices: Moderator Note: None of the images included worked so I deleted them. In any case NEVER add Images to your posts - add the URL pointing to the image only so that people on slow lines can decide whether to open them or not. Make sure the URL points to a publically accessible site.

I found this article, hopefully it helps: http://www.codedigest.com/Articles/Sharepoint/94_Active_Directory_for_FBA_in_SharePoint_using_LDAP.aspx

Thank you very much. This is a quite detailed guide which is really useful. And,also, fortunately, I had found a solution. There are some key points as following: 1. In the web.config in SharedServices, we should ensure the <PeoplePickerWildcards> node contains the MembershipProviders such as: <PeoplePickerWildcards> <clear /> <add key="AspNetSqlMembershipProvider" value="%" /> <add key="ADMembership" value="%" /> </PeoplePickerWildcards> 2. In the User filter box, type the following LDAP search filter: (&(objectCategory=person)(objectClass=user)( !(userAccountControl:1.2.840.113556.1.4.803:=2))) Sorry, I have not figure out which point is necessarily required and which is over demanded, but these two had helped me got the "AspNetActiveDirectoryMembershipProvider: <Users>" when finished Importing User Profile Configurations in SharedService.