diff --git a/doc/administration/auth/ldap.md b/doc/administration/auth/ldap.md
index 0410da34733c29d74a7930fd5aed1de1c902fdf7..040767ba719dce8ac4e98bc00581a78f9e9688e4 100644
--- a/doc/administration/auth/ldap.md
+++ b/doc/administration/auth/ldap.md
@@ -315,3 +315,15 @@ If you are getting 'Connection Refused' errors when trying to connect to the
 LDAP server please double-check the LDAP `port` and `method` settings used by
 GitLab. Common combinations are `method: 'plain'` and `port: 389`, OR
 `method: 'ssl'` and `port: 636`.
+
+### Timeout error
+
+If active directory has nested groups timeouts may be experienced when enumerating LDAP groups. The symptoms are "LDAP search timed out after" errors in the `production.log`
+
+1. Look for a timeout error `LDAP search timed out after` in `production.log`
+   
+    ```
+    grep 'LDAP search timed out after' /var/log/gitlab/gitlab-rails/production.log
+    ```
+
+1. Increase the `timeout` value in the LDAP settings - e.g `timeout: 90`