AD Groups and User Roles
I just inherited the entire SCSM and Portal setup from my predecessor who has left the company. I've set up 2 runbooks so far and am missing a lot of info. So I apologize wholeheartedly if I ask a stupid question:
Currently the setup we use is; per Request Offering, there are:
- User Role with named accounts in there for access
- Management Pack per RO
- SO per RO
- Catalog Group per RO
It's al pretty confusing honestly, to the point of breaking down. I've tried to make it a little less a one woman show, and to be able to do that I've tried using Active Directory Security Groups to add to the User Roles so people can be added to the User Roles via the AD Groups. However, I'm getting very mixed results. In an RO where I have an empty User Role; I can still see the RO, others can not. If I add 2 AD groups (the actual one and the admin one), only the people in the admin group and named accounts directly added to the user role can see the RO.
How can I trouble shoot this? Am I missing something?
I have to add that I have almost NO documentation, so what little I know is through trial and error. While I've used SCOM and SCCM, this is new to me and does my head in.