diff --git a/keystone/common/policies/group.py b/keystone/common/policies/group.py
index 024ee65f75..8c8293cd39 100644
--- a/keystone/common/policies/group.py
+++ b/keystone/common/policies/group.py
@@ -21,7 +21,7 @@ SYSTEM_READER_OR_DOMAIN_READER_FOR_TARGET_USER_OR_OWNER = (
     'user_id:%(user_id)s'
 )
 ADMIN_OR_SYSTEM_READER_OR_DOMAIN_READER_FOR_TARGET_OR_OWNER = (
-    '(' + base.RULE_ADMIN_REQUIRED + ') or (' +
+    '(' + base.RULE_ADMIN_REQUIRED + ') or ' +
     SYSTEM_READER_OR_DOMAIN_READER_FOR_TARGET_USER_OR_OWNER
 )
 
@@ -32,7 +32,7 @@ SYSTEM_READER_OR_DOMAIN_READER_FOR_TARGET_GROUP_USER = (
     'domain_id:%(target.user.domain_id)s)'
 )
 ADMIN_OR_SYSTEM_READER_OR_DOMAIN_READER_FOR_TARGET_GROUP = (
-    '(' + base.RULE_ADMIN_REQUIRED + ') or (' +
+    '(' + base.RULE_ADMIN_REQUIRED + ') or ' +
     SYSTEM_READER_OR_DOMAIN_READER_FOR_TARGET_GROUP_USER
 )