Have you upgraded to v14 and Active Directory/LDAP auth to the appliance admin stopped working?
Try running this:
tmsh modify auth ldap system-auth check-roles-group enabled save sys config
Seems that there was a change in how group enumeration happens, and this fix sorts it. You don’t need to reboot or anything, it just works.