This keyword can be followed by a number of group names, separated by spaces.
If specified, login is allowed only for users whose primary group matches one
of the patterns. `*' and `?' can be used as wildcards in the patterns. Only
group names are valid, a numerical group ID isn't recognized. By default login
is allowed regardless of the primary group.