Im going to do my best to paint this picture. hopefully someone can provide an answer (and maybe so advil).
I work for an MSP so a lot of i=out clients have many different variations in their company infrastructure.
This client has the following
No Physical On-Prem servers.
All Machines are Azure Joined with Microsoft Business Premium Licensing and enrolled with Intune.
1 local Windows 10 VM they have been using to host shares from (also Azure joined/intune enrolled)
Users are members of a group that is added to the share permissions and the security permissions. Users that were added previously show up in the Security ACL (AzureAD/UserName).
The users that were added previously are still able to access the share however any new hire that is added to the groups (identical to old users) is not able to access the share. I can see that the share...