Active Directory Group Configuration

I am having problems trying to get Group Membership to work with Active Directory (AD).
My Network Operations has asked me to switch SuiteCRM from LDAP to AD.
Previously we were not using Group Membership but it has been decided that we need to use this feature.
Our Network Operations has setup an AD server in this way.
In AD under Domain we have:

    DOMAIN
        Groups
            Accounting
            Billing
            Sales
            Support
            Security Groups
                nextcloud_user                
                suitecrm_access
                wiki_admin
                vpn_user
                ...
            ...

Each Group has been assigned as a member of one or more of the Security Groups. So Sales might be a member of nextcloud_user, suitecrm_access, vpn_user, etc…
Users are assigned as a member of one or more of the Groups (Accounting, Billing, Sales, Support, etc…)

I have Password authentication working without enabling group membership.

User DN: OU=Users,OU=Accounts,OU=DOMAIN,DC=domain,DC=local
UserFilter:  (empty)
Bind Attribute: userPrincipalName
Login Attribute: samaccountname
Group Membership: Checked

Group Memebership: 
Group DN: OU=Security Groups,OU=Groups,OU=DOMAIN,DC=domain,DC=local
Group Name: CN=suitecrm access
User Attribute: cn
Group Attribute: memberOf
With User DN: Checked

All of my attempts have failed. Do anyone know the correct way to configure SuiteCRM for this kind of AD configuration?

Thanks