So after recently implementing directory sync i wanted to make sure any new groups were properly set up in active directory.
Chrome depreciated one of the features that allowed these popups to work, here is a temporary workaround to get it working.
I don’t know whats going on in the past few weeks but the sheer amount of zeroday exploits via email have risen. To protect yourselves against this I would recommend setting up a transport rule to drop or reject any email with executable content. This can be done for Exchange 2013 or Office365 (Exchange Online).