From 70d2775eb4acbc3f755939a77be6eb22ef49030e Mon Sep 17 00:00:00 2001
From: Sven Seeberg <mail@sven-seeberg.de>
Date: Tue, 5 Sep 2023 19:18:53 +0200
Subject: [PATCH] Improve LDAP group config documentation, fixes #21159
 (#21227)

Improve the wording of the LDAP group attributes documentation and
expand the examples.
---
 usage/authentication.en-us.md | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/usage/authentication.en-us.md b/usage/authentication.en-us.md
index 4ab5cad3..6e4ede0b 100644
--- a/usage/authentication.en-us.md
+++ b/usage/authentication.en-us.md
@@ -157,12 +157,13 @@ Uses the following fields:
 
 - User Attribute in Group (optional)
 
-  - Which user LDAP attribute is listed in the group.
-  - Example: `uid`
+  - The user attribute that is used to reference a user in the group object.
+  - Example: `uid` if the group objects contains a `member: bender` and the user object contains a `uid: bender`.
+  - Example: `dn` if the group object contains a `member: uid=bender,ou=users,dc=planetexpress,dc=com`.
 
 - Group Attribute for User (optional)
-  - Which group LDAP attribute contains an array above user attribute names.
-  - Example: `memberUid`
+  - The attribute of the group object that lists/contains the group members.
+  - Example: `memberUid` or `member`
 
 ## PAM (Pluggable Authentication Module)