Endpoint Protection

Is AD groups supported when giving access via SEP Administration?

I have tried with use account only; but need to make sure groups are also supported?

tks,

 You can import group structures, or organizational units. To import the
organizational units, you use an LDAP directory server or an Active Directory
server. Symantec Endpoint Protection can then automatically synchronize the
groups on the Clients tab with those on the directory server.

You cannot use the Clients tab to manage these groups after you import them.
You cannot add, delete, or move groups within an imported organizational unit.
You can assign security policies to the imported organizational unit. You can also
copy users from an imported organizational unit to other groups that are listed
in the View Clients pane. The policy that was assigned to a group before the group
was imported has priority. A user account can exist in both the organizational
unit and in an outside group. The policy that was applied to the outside group has
priority

Reference Admin guide : pg no. 48
About importing an existing organizational structure

It sounds like utak is talking about administrator logins to SEPM.  I'm not sure there's a way to allow a group single sign-on access.  Each user has to be setup and mapped to an AD user.

Before you try to give the Authentication to the SEPM through AD
I would like you to make a new Account & then authenticate that account with AD dont change the "admin" account authentication from SEPM to AD, as this may give you problems in fure & you may not be able to login to the SEPM & you might have to uninstall & reinstall the SEPM, So better you make a new account & then get it authenticated with AD. :)

Nope - that is not supported, you have to create a user for every single admin, and then join this account to a AD account for password validation.