The only other discussion on this subject is over 8 years old.
I have both an [removed] server and a NoMachine Terminal Server running on the same server.
When I open an [removed] session, all users, including those authenticated through LDAP, are members of the applicable groups defined in /etc/security/group.conf.
If I just open an SSH session from the command line, the user also acquires memberships to the applicable groups.
When I open a NoMachine session, the pam_group module is never applied. Users do not belong to applicable groups in /etc/security/group.conf, but these group memberships are required by some of the software installed on the server.
Is there a fix for this?