Hello
We are structuring our permissions by using Delegation of Control groups in AD.
meaning we are nesting AD groups to delegate control.
In vCenter we will then assign a specific role to that delegation of control group.
Now I 've seen some odd behaviour.
And I can't pin point the cause.
When I assign a role to a nested AD group (Security Group - Domain Local), users in that group don't get the privileges.
When I assign the same role to a different nested AD group (Security Group - Domain Local), users in that group will get the privileges.
The only difference I can see is in the length of the name of the final AD group.
Does anyone recognize this ?
I know you can only nest groups from the same source type.... which we do