Hi Sven, Can we see your active directory realm configuration? Are you using INI or Spring?
Also, I would try the org.apache.shiro.realm.ldap.JndiLdapRealm for JNDI/AD-based authentication. This is a new class added in Shiro 1.1. Les -- Les Hazlewood Founder, Katasoft, Inc. Application Security Products & Professional Apache Shiro Support and Training: http://www.katasoft.com
