I have three active directory groups with membership as follows. When I grant sql01-admins a login (and the sysadmin role) to a sql server instance, users in the nested groups are able to login through ssms and access resources as I expect. However, if I use the sqlps powershell provider they are not able to access the resources. If I add the nested group directly, i.e. if I grant sql-test-admins and sql-prod-admins a login (and the sysadmin role), then the sqlps modules is usable.
Why does this nested group work with ssms but not with the powershell sqlps provider?
sql01-admins
--sql-test-admins
--sql-prod-admins
sql-test-admins
--bill
--larry
sql-prod-admins
--jim
--tom
- Edited by gordonthree Thursday, August 20, 2015 6:52 PM