Will using the distribution group as security group impact the Active Directory performance?

Good Day,

My question is very simple and straighforward.

If i use the distribution group as security group, will it impact the AD performance? ... In other words, using the distribution group is for email purpose only but if i use it as security group as well for resource access, will it make my users logon time slow or something? ... or will it create an AD replication bottleneck?

Appreciate your quick response.

Thanks in advance
Who is Participating?
Mike KlineConnect With a Mentor Commented:
It could depending on how many groups the user is a member of.  
You can run into an issue known as "token bloat"
New resolution for problems with Kerberos authentication when users belong to many groups
 ...but as you can see there are also fixes/workarounds in place
There are other concerns with security vs distro lists.  See the thread below, really great discussion from Brian, Simon, and Chris a few months ago
Glen KnightCommented:
Security groups Groups that can have security descriptors associated with them. You define security groups in domains using Active Directory Users And Computers.

Distribution groups Groups that are used as e-mail distribution lists. They can't have security descriptors associated with them. You define distribution groups in domains using Active Directory Users And Computers.

Extract from: http://technet.microsoft.com/en-us/library/bb726978.aspx
Glen KnightCommented:
but of course you can create mail enabled security groups so why bother with DL's when one group will do both?
Mike KlineCommented:
demazter that was the entire debate here:
I can see both sides of the argument.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.