Hi Thorchi,
Login Attribute Name
the "login attribute name" defines the user attribute you want to use to authenticate the user. This is the user name the user will have to enter in the ssl vpn plus client connection window.
Example:
- if you want to use the user name: user1
-> SAMAccountName
-> userPrincipalName
Search Filter:
Here you can type in the ldap query. As you want to check for AD group membership only, this is pretty straight forward:
Example:
You want to allow VPN access only to members of the "vpnusers" group. The vpnusers group itself is located in an Organisational Unit (OU) in the active directory domain example.com.
memberOf=%Distinguished name of group%
-> memberOf=CN=vpnusers,OU=RAS,DC=example,DC=com
have fun
fab
P.S: You can get the Distinguished name of AD objects easily through the AD Users & Computers MMC