If you are submitting an issue for the Joomla! CMS, please submit it at https://github.com/joomla/joomla-cms/issues/new instead. You may remove this line from the issue template.

Steps to reproduce the issue

Install Active Directory
Enable Joomla LDAP plugin

Expected result

login as a user already in the active directory domain, and if the user doesnt exist we expect it to create a new one.
login password of the domain controller would be used if the passwords dont match, or an error given.

Actual result

Joomla returns a result that either the user doesnt exist or the passwords dont match.
Joomla always defaults to the local joomla account if the user exists in Joomla AND the domain... even if the passwords do
not match
You cannot tell if Joomla actually contacted the Active Directory Domain and did any work as it doesnt provide any status information to the screen so its impossible to debug without turning tracing on in the AD controller.

System information (as much as possible)

× JOOMLA OUTPUTS THE FOLLOWING
Warning
Username and password do not match or you do not have an account yet.

Additional comments

The LDAP plugin should create a login if there is one in the AD Controller.
The LDAP plugin should ask the Administrator for the default treatment if the local username and password do not match the domain username and password even if they usernames are the same.
(EG AD login john@joomla.org password = test1 Joomla User john@joomla.org password=test2.
At the present time test2 will result in a valid system login.