Score:0

ADFS - Deny authorization to all groups from location

se flag

I want to restrict a domain and all its groups from being authorized by AD FS.

In the server, on AD FS manager, I managed to create a new Access Control Policy group, but I am not sure what to select in "Permit users... except.." so that any user from a specific domain is not authorized by the access control policy.

I can add individual groups, but is there something I could add so all users from that domain are not authorized?

Or is there another place where I can deny all users from a specific domain access on a per application group basis?

I am very new to this and I am sorry if my question is fuzzy.

Thank you!

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.