I'm setting up a test AD instance using FIM. I currently have the source domain synchronizing a single OU with some user accounts and a group. User provisioning and synchronization works fine. Group provisioning and synchronization also work with one exception: when I view the group in the FIM portal, all three of the members appear in both the "Current Membership" and "Invalid Members" boxes. Only two of the three members appear in the group membership in the test AD domain.Has anyone dealt with users displaying as "Invalid Members" or partial membership synchronization?Thanks,Brian

Hi Brian,Invalid members in UI are displayed when one or more members do not meet the Active Directory group membership requirements, an Invalid member message will be displayed. For more information about Active Directory group membership requirements, see Group Scopes.Invalid members represent members which does not meet AD requirements. Current Membership reflects membership in FIM(FIM does not reject requests to add members which does not meet AD requirements).There is a known issue in Update1 where invalid memnerslist in UI displays incorrectly for domain local groups when viewed as non-admin user. This is fixed in Update2.Thanks,Sri