7,023 questions
Microsoft Azure AD Group Parent Child ACL Permission Inheritence
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 76%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBM%3C/text%3E%3C/svg%3E)
Balan Murugan
41
Reputation points
I have below AD groups setup in place with parent child manner. The r-w ACL permission has been given to the Great-Grandparent AD group level. But, it is not getting propagated to the underlying Child Service Principal which is part of the Parent AD group.
At the moment, we are requesting for the r-w ACL permission for each of the child AD groups. I don't think this is the right approach.
ADLS-SOLN-SUPPLY-CHAIN-ANALYTICS-PROD-READ (Great-Grandparent Parent AD Group)
AZR-LAKE-SUPPLY-CHAIN-ANALYTICS-PROD-TEAM (GrandParent AD Group)
AZR-LAKE-SUPPLY-CHAIN-ANALYTICS-PROD-SERVICE (Parent AD group)
Prod - MGS-AOHPLATFORM-ANALYTICS-SUPPLY-CHAIN-ANALYTICS (Child Service Principal)
Does the ACL permissions are inherited from Great-Grandparent all the way to the Child OR how does it work?
Can you please explain about this scenario for the solution?
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
{count} votes
-
Balan Murugan 41 Reputation points
2024-12-09T11:08:34.47+00:00 Team - Can I have some clarifications for my questions above?
Sign in to comment