microsoft.conditionalAccess.policy.conditions.users

Description

Users, groups, and roles included in and excluded from a Microsoft Entra Conditional Access policy scope

Fields

ID	TYPE	DESCRIPTION
includeUsers	[]string	User IDs in scope of policy unless explicitly excluded, None, All, or GuestsOrExternalUsers
excludeUsers	[]string	User IDs excluded from scope of policy and/or GuestsOrExternalUsers
includeGroups	[]string	Group IDs in scope of policy unless explicitly excluded
excludeGroups	[]string	Group IDs excluded from scope of policy
includeRoles	[]string	Role IDs in scope of policy unless explicitly excluded
excludeRoles	[]string	Role IDs excluded from scope of policy