I've got directory service groups for all privileged groups in AD, and I'm looking for a way to trigger email only if the account is in one of those groups. I have [AuditableUserEvents].DestinationAccount, but how do I check to see if it is a member of a set of directory service groups?
This is a silly question, I found my own answer. The logical operator is contextually based on the type of the consequent--drop a group behind the equals sign and magically it changes from an equivalence check to a membership check. I wish there was a text based rule editor instead of this drag-and-drop system.
Sorry to waste bandwidth.