Dynamic groups are broken, but we need to investigate why and how to fix it. This is an important enhancement, as it is a common configuration.
By dynamic groups, we mean the user entry has an 'memberOf' attribute value for each group (as opposed to the group having a 'member' attribute value for each user). Below is a sample LDAP configuration:
Note that the 'memberOf' attribute name may vary, and its value can be the full distinguished name (DN) or just the common name (CN) component. This customisation is required for full dynamic group support.