Eric M Russell (4/15/2014)
The xp_logininfo stored procedure can be used to return the members of a domain group.A couple years back I wrote a script that combines sys.server_principals and xp_logininfo to return individual domain accounts that have either been explicitly granted sysadmin membership or have inherited sysadmin via domain group membership.
This seems so close to what I'm looking for. The issue isn't sysadmin though. The people in question don't have THAT big of permissions. They're just able to write and change the schema. They don't have the ability to do security stuff or anything. It's like they have dbo permissions on certain databases.