I currently have a Realm tied to a policy
mydomain.com/realm1 ----> tied to Policy 1
I then made a sub-realm
mydomain.com/realm1/subrealm1 ---> the sub realm is tied to Policy 2
When a user goes to "mydomain.com/realm1/subrealm1", do they have to qualify for both Policy 1 and Policy 2?
Or will only the Policy 2 check be run? What I want is for only Policy 2 to be checked, but I don't think that is happening. I want a group of users to have access to just the sub-realm and NOT the parent realm.
Is that possible?