diff --git a/cmd/config/identity/ldap/config.go b/cmd/config/identity/ldap/config.go
index cd7dfeef9..049715f11 100644
--- a/cmd/config/identity/ldap/config.go
+++ b/cmd/config/identity/ldap/config.go
@@ -283,6 +283,11 @@ func (l *Config) Bind(username, password string) (string, []string, error) {
 			errRet := fmt.Errorf("LDAP auth failed for DN %s: %v", bindDN, err)
 			return "", nil, errRet
 		}
+
+		// Bind to the lookup user account again to perform group search.
+		if err = l.lookupBind(conn); err != nil {
+			return "", nil, err
+		}
 	} else {
 		// Verify login credentials by checking the username formats.
 		bindDN, err = l.usernameFormatsBind(conn, username, password)