AllowGroups
This keyword can be followed by a number of group names, separated by spaces. If specified, login is allowed only for users
whose primary group matches one of the patterns. `*' and `?' can
be used as wildcards in the patterns. Only group names are
valid, a numerical group ID isn't recognized. By default login
is allowed regardless of the primary group.