On Leopard –
the server is bound to AD and is an OD master

I can fully enumerate an user under dscl as such
dscl localhost -read /Active\ Directory/my.domain.edu/Users/yournamehere

but on same machine when i go into WGM and try to create an OD Group and populate with said user, I can’t find them.
I create the group,
click Members
I can add AD Groups with no problem, and from a client bound to this triangle I can run
id yournamehere
and I see all of that user’s AD and OD groups
(assuming that the user was in a OD group made up of AD groups)

the only users that show up when doing a “browse” in WGM are the sysadmins of AD

even over in Server Admin, when trying to apply/create an ACL permissions list – no users show up.
but the CLI will show them….

Thoughts?

Rich