First, the security reasons for not doing that remain, plus the network load and policy updates etc - all the same. Every time a password changes, it has to be sent around to every other machine, just like before. 10,000 users per device, think about what's going to happen when peoples passwords start expiring etc...
So, just assign who's necessary, or use the "automatically add local domain users" feature.
I know it would be great not to have to bother, or not to have security at all and just let everyone use everything, but, that's not compatible with regulation and controls. You need to define who, what, where, when, why.
Hey, look to the bright side - at least you can assign a bunch of users! - Most products it's limited to a few dozen or so, one well known product has no user support at all...
Thanks Mr. CTO...appreciate your help on this.
BTW - I forgot to ask the recommended limit for users in a group? Is that still remains > 2000 (same as specified for 5.x per the best practice guide?)
Thanks a ton.
it's not important in v6, as there are really no "groups", but you don't want to add more users to machines than needed.