We currently authenticate from an active directory instance. I need to be able to limit who can log into the Aveksa to only people in a certain group. I tried to do this through the SearchFilterForAccounts option in the authentication config. The ldap query string works when I use it in an ldap broswer. I also tried it without the ( ). But when I test it I get the following error. Any suggestions or examples on how to use this config attribute?