Jan 14 2022 12:20 AM - edited Jan 14 2022 12:21 AM
Azure configuration for SSPR currently appears to only allow three options for inclusion: None, Selected or All. There is no exclusion configuration option - and that's a problem for non-interactive service accounts and similar:
The workaround is awkward and potentially very time consuming, as described by this person's issue: https://social.msdn.microsoft.com/Forums/en-US/51affd2c-a2c8-4faa-bbd8-bd1773c985d4/how-to-exclude-a...
Jan 14 2022 02:16 PM
Nov 29 2022 04:12 PM
Upvoting this feature. While there is possibly a situation where a dynamic group is valid, exclude would be administrator friendly