In Activiti, you can set LDAP-AD users as Tenant Admins using the property
However, this property did not set a user as Tenant Admin unless the property was set to the DN of a user in CN=Users folder and the ldap.synchronization.userSearchBase was also set to the CN=users Active Directory folder.
For most customers, not all of their users live in the CN=Users folder. In my example, I created an OU directly under the domain root and set the user search base and tenantAdminDn properties to the OU.
Using the above settings did not bring in an LDAP-AD as the Tenant Admin.
Instead, you must use properties similar to the below properties:
Attached is the properties file with both usersearch base and TenantAdmin DN pointing to cn=users and an OU.