Why? Because the administrator "uid=admin" resides in the same organization unit (ou=people) as the imported users from external AD/LDAP.
|Click on "Add source LDAP server"|
|Fill in the detail for the backend MS AD server|
|Appears on top-right of screen when "Test LDAP Connection" is clicked|
|Take note that the above should reflect how a Person object is to be fetched from MS AD|
|Make sure "Keep external persons" is enabled|
As per documented, "This will allow your default user 'admin' to log into Gluu Server after initial Cache Refresh iteration. If you do not enable 'Keep External Person', your 'admin' user including all other test users will be gone after first Cache Refresh iteration."
|Left column refers to Source; Right column refers to Destination|
|Make sure "Cache Refresh" is enabled|
|Add MS AD detail. Click "Test LDAP Connection" to ensure connection is OK|
(AuthorizeAction.java:253) - Failed to get CustomScriptConfiguration. auth_step: 1, acr_values: auth_ad_server