Configure the users at a server (such as LDAP) to have the fully distinguished name and arrange them in groups.
Figure 1-2 Large number of users
To deploy,
Add the TRO of the LDAP server in the trusted root of the VPN server.
Add the group entries or user entries for which access is to be allowed.
IMPORTANT:If the full distinguished name of the LDAP entity (user or group) is not provided, the authentication does not succeed.