microsoft.conditionalAccess.policy.conditions.users
Description
Represents users, groups, and roles included in and excluded from the policy scope.
Fields
| ID | TYPE | DESCRIPTION |
|---|---|---|
| includeUsers | []string | User IDs in scope of policy unless explicitly excluded, None, All, or GuestsOrExternalUsers. |
| excludeUsers | []string | User IDs excluded from scope of policy and/or GuestsOrExternalUsers. |
| includeGroups | []string | Group IDs in scope of policy unless explicitly excluded. |
| excludeGroups | []string | Group IDs excluded from scope of policy. |
| includeRoles | []string | Role IDs in scope of policy unless explicitly excluded. |
| excludeRoles | []string | Role IDs excluded from scope of policy. |