I'm working on setting up a self-service policy that I'd like to have scoped by machine group and Active Directory group — more specifically, a list of machines (created via JSS) allowed to have the package installed, and a list of users (pulled from Active Directory) allowed to install the software.
Everything works properly as long as no AD group is specified. Everything works properly as long as a small AD group is specified. But when the group passes a certain undetermined size, the policy no longer works, and Self Service doesn't show the package. For instance, it'll work if I specify that only the AD group for lab administrators is allowed to install it. But if I broaden it to our "all employees" group, it fails.
Have I missed something obvious, or is there something I should be doing another way?
Brian
