My organization has about 150 security groups setup in active directory (the previous IT guy had a lot of free time). There are only about 40 users in our organization and all of these users are members of multiple groups. I suspect that many of these groups are not even being used for anything right now.
Is there an easy way to find out which directory permissions a group has been added to?
Also, if anyone has any advice as to the simplest way to start cutting down the number of groups, that would be much appreciated (I know that this is hard to do without some knowledge of my organization, but any general advice would be great).
Thanks in advance.