Security group membership not updating
Below is an example: Certainly a few more steps than scoping in Group Policy!Click OK until you are back at the Device Collection Wizard.This guide covers creating groups and collections and describes a sample deployment.I also added a Power Shell script that helps create AD group-based SCCM collections.Open the properties for each discovery method and ensure that “Enable delta discovery” is checked.Delta discovery will ensure that new/updated resources are updated within SCCM.
Specify System Resource as the attribute class and System Group Name as the attribute.
Enabling delta discovery for Active Directory groups With both of these settings configured, SCCM will be able to see our Active Directory resources.
The next step is to create a group and a collection.
Copy this group name, as you will be pasting it quite a bit in the upcoming steps.
Head back to the Configuration Manager console and navigate to Assets and Compliance/Device Collections. For standardization, name your new collection the same as your security group. In the screenshot below, my APP_Adobe Flash Player collection is limited to All Desktop and Server Clients: Create Device Collection Wizard On the Membership Rules page, select Add Rule – Query Rule. Because you likely won’t have multiple query rules, you don’t need to get very specific with the name.