Hi, I have successfully imported all AD UserGroups to my SSP. But Sharepoint People Picker not showing those groups to assign permission.

Hi, Please make sure that the application pool account has read permission to AD. If the application pool account you specified for the farm administrator is a local account rather than a domain account, it may not have the privilege to query AD, so you cannot find AD group with people picker. For more information about how to change application pool account, please refer to: How to change service accounts and service account passwords in SharePoint Server 2007 and in Windows SharePoint Services 3.0 http://support.microsoft.com/default.aspx/kb/934838 Hope it helps.Lily Wu

Hi Lily Wu, Thanks for your information. My applciation is running for more than 3 yrs and i am already getting few User Groups. For past 1 yr New User groups are not imported to Sharepoint so i have imported all Users & User groups from my Domain AD to Sharepoint SSP. As you said above "Please make sure that the application pool account has read permission to AD" if my application pool account dont have read permission then how i will get rest of user names & groups in People Picker now? Sorry to ask , is the people picker directly fetching users & groups from AD? & not from SSP?

Hi, Found one small clue for my issue. All users groups created as Security group are imported to my applciation and can able to see those in People Picker. Groups created a Distribution group are not displayed in People picker. Why distribution groups are not shown in people picker? Kindly help me.

That's how it works. Distribution groups cannot be used as security instances, such as assigning permissions to them. SharePoint uses your AD to authenticate a user against. in order to be able to do this, it must be a security principle that SharePoint is working with. Distribution groups are not security principles. Also, you do not need to import users to your SSP to be able to add them to a site for permissions. The people picker looks directly to your AD for this information. Importing users into SharePoint provides a Sharepoint profile for those users and makes them searchable by People searches.Imagine what we could be...If we could just imagine. Daniel A. Galant