The JNDI Tutorial is a good starting place. If I remember correctly, the problem with using JNDI with AD is that you need an authenticate in AD with an administrator account before you can perform any operations. It should not surprise you that MS and Java do not play nice together
Are you keeping this a desktop app or are you going to use an EJB container? I work mostly with Weblogic and have used its internal API to manipulate LDAP. A container may give you some capability that the vanilla Java API does not.
Im ok with doing auth to get to AD. I had to provide a way for .net to auth anyway as it was not tied to the currently logged in windows users.
No desktop anymore. Yes something like that EJB. although im not sure what framework to work with.
I am trying to get up to speed on all the different frameworks and decide which is best to use for this project.
Not sure what app server I will be using tomcat, glassfish, etc. so I may not be able to use the latest tech and the server wouldn't support it.
I hope that makes sense, I may just be taking out my ass.