You might see that the configuration.xml file once held the settings for the AD authentication and seems to not be red by SPE anymore, In versions prior to 9.1 the connection settings were saved in the configuration.xml under the parameters "ADAuthenticationMode value" and "ActiveDirectoryDetails groupname".

Now when using a fresh install with AD authentication these settings are not stored in the configuration.xml file anymore. However, the connection is working, but as soon as you would like to change the connection details (via Broadcom's xmlmodifier) the new settings are saved in the file but any connection is not possible anymore.

The issue can easily be reproduced by a fresh install of SPE. How we can change the connection details now? In common, customers like to directly connect to a certain domain controller but are not able to get the connection details into SPE.

Release : 9.1.0

In SPE 9.0 and onwards, the  AD groups and other connection settings are present in the application.properties file. Below is the default location for the application.properties file on Windows: 

C:\Program Files\Symantec\Scan Engine\RestAPI

Here is the sample configuration for LDAP settings in the application.properties file:

#LDAP Configuration
sperestapi.ldap.enabled=true
sperestapi.ldap.url=renbdl060178-01.sperest1.com
sperestapi.ldap.port=389
sperestapi.ldap.basedn=DC=sperest1,DC=com
sperestapi.ldap.groupdn=CN=testgroup,DC=sperest1,DC=com
sperestapi.ldap.ssl.enabled=false