I'm attemping to do AD authentication with the latest AD plugin. I need to authenticate against two domains (that trust each other but are NOT in the same forest. This works fine in other applications doing LDAP). Individually, configuring each of these domains work. But when I attempt to add two separated by commas as per the docs, only the first entry works. Can anyone recommend a solution?

I get errors like "Credential exception trying to authenticate against myotherdomain.com domain and: org.acegisecurity.BadCredentialsException: Either no such user 'user@myotherdomain.com' or incorrect password; nested exception is javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1db1] --> my user definitely exists. Tested with other LDAP enabled apps. Also, I'm the admin for LDAP.

I believe this is an issue with the binding credentials Jenkins is using, which is a show stopper because Jenkins won't allow me to configure two separate binding credentials - even with the LDAP plugin.