Event Details
Operating System->Microsoft Windows->Application logs->Quest->Active Roles 7 or higher->EventID 2854 - Dynamic Group has an invalid membership rule. External domains not allowed.
EventID 2854 - Dynamic Group has an invalid membership rule. External domains not allowed.
 Sample: 
Dynamic Group has an invalid membership rule.
  
The membership rule refers to an external domain, which is not allowed by the Dynamic Groups policy.  
Domain: %1  
Dynamic Group: %2  
Membership rule scope: %3  
Membership rule filter: %4  

The current Dynamic Groups policy allows only the membership rules that match objects from the home domain of the Dynamic Group. 
A rule that matches objects from a different domain (cross-domain rule) will stop Active Roles from updating the members list of the Dynamic Group, so the members list will not comply with the membership rules. 
If you want to use cross-domain rules, choose the option to enable cross-domain membership in the Dynamic Groups policy (Configuration/Policies/Administration/Builtin/Built-in Policy - Dynamic Groups). 
Otherwise, you should remove cross-domain membership rules. 
You can do this using the Membership Rules tab in the Properties dialog box for the Dynamic Group in the Active Roles console.
Log Type: Windows Event Log
 Uniquely Identified By:
Log Name: ARAdminService
Filtering Field Equals to Value
Source ARAdminSvc
EventId 2854
Field Matching
FieldDescriptionStored inSample Value
DateTime Date/Time of event origination in GMT format. DateTime 10.10.2000 19:00:00
Source Name of an Application or System Service originating the event. Source Security
Type Warning, Information, Error, Success, Failure, etc. Type Success
User Domain\Account name of user/service/computer initiating event. User RESEARCH\Alebovsky
Computer Name of server workstation where event was logged. Computer DC1
EventID Numerical ID of event. Unique within one Event Source. EventId 576
Description The entire unparsed event message. Description Special privileges assigned to new logon.
Log Name The name of the event log (e.g. Application, Security, System, etc.) LogName Security
Category A name for a subclass of events within the same Event Source. Category AttestationReview
Whom InsertionString2
Domain InsertionString1
Dynamic Group InsertionString2
Membership rule scope InsertionString3
Membership rule filter InsertionString4
Comments
You must be logged in to comment