Question relating to Squid LDAP authentication with eDirectory.

I am using ldap-group in my acl's. My groups are very dynamic with
users added and removed, and it seems (from what I can tell) ldap does
not check regular as I take users out of groups which should take away
access, and I find that it hasn't happened.

Any ideas ?