The Add-SPShellAdmin command does not seem to be able to use an AD group. But we want to manage SP Shell access using an AD group. What can we do to use an AD group to manage access to the SP PowerShell?
by DonJ at 2012-09-13 11:59:34
So, under the hood, the command is adding the user to the SharePoint_Shell_Access role in the database. I believe that also adds them to the WSS_Admin_WPG on the Web servers. You could possibly try modifying those directly. But, I'm not sure SharePoint actually supports anything but user accounts. Todd or someone will likely jump in and clarify that!
by ToddKlindt at 2012-09-15 07:40:41
Don has nailed it on what the cmdlet does. It could probably be done manually. SharePoint certainly understands AD groups in other capacities. I would assume if you manually added AD groups to those two spots (SQL role and WPG group on all the servers) it would work. I can't guarantee it though.
If do that, remember you'll have to make the change on each SharePoint server, including ones added later on.