Limiting LDAP Users by Group

To limit the LDAP authentication realm users by a specific group, you must use the LDAP filter as follows:

  1. Navigate to Administration > Security.
  2. In the selection box, select Authentication (Users).
  3. Create or edit an LDAP authentication realm.
  4. In the User Search Filter field, specify the name of the group you want to use as a restriction.

    For example:

    (&(memberOf=CN=automation,OU=LDAPTest Groups,DC=ldaptest,DC=net)(sAMAccountName={0}))

    The first condition here, (memberOf=CN=automation,OU=LDAPTest Groups,DC=ldaptest,DC=net), limits the LDAP authentication realm to only the users belonging to the automation group.