Have a customer who is trying to clean up 7,000 AD Security Groups.
They are looking for two reports that they can run:
1) Report that allow them to input list of Security Groups and report back all the Shares / Folders / Files that the Security Group(s) are assigned to. Maybe similar to this by driven by security group: Share and NTFS Permissions for Domain Groups
2) Report that will show AD Security Groups that are not assigned to Shares / Folders / Files
They are currently working on setting up the discoveries for AD, NTFS, Folders - but were looking for way to analyze that data based on AD Security Groups.