Active Roles is unable to update membership of a certain dynamic group due to a membership rule failure.
• The Administration Service cannot find the search container of the membership rule (referred to as "membership rule scope" in the event description). The search container may be renamed or moved to a different directory location. A symptom of this condition is the "Directory object not found" error message in the "Details" field of the event description.
• The Administration Service cannot access an Active Directory domain that holds the objects that match the membership rule.
• The Administration Service cannot access the Active Roles configuration database on SQL Server.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center