When we map an LDAP to an organization in AA, we can only make one ruleset specific to that entire organization. However, there are different users that will need to access applications at different times of the day and from different places. Because there are different groups of users in an LDAP, I want to be able to give specific rulesets for each user group.
For example: In a corporation, Operations may need access to the application 24 hours but only from that office location, while Finance can only access the applications Monday through Friday from 7am to 6pm from the office. All these users coexist inside the same LDAP, but are given different risk rulesets.
Has this been done before?Is it possible to do?