Allow LDAP authentication, but only for previously created accounts
I'd like to configure LDAP authentication so that users can only log in if I have previously created an alias (either Enterprise or LDAP) for them. Currently, anyone who belongs to a mapped group can get in with their LDAP credentials. What I need is the ability to map a group but not let everyone in from that group, and I haven't seen a combination of options that will allow me to do that. Is this possible?