APM AD auth resticted by client source and client OU
I have a requirement to allow internal users to access to SharePoint if they come from our internal IP addresses and they are part of a specific OU. I have a separate requirement that will allow connectivity from the internet but only to one specific OU.
For the internal users I have an irule after the Logon Page which restrict the connections by client source address. Then I have the AD Query for the specific OU.
What I'm not sure of is how to allow connectivity from internet users but to only one OU that the internal users are not allowed to access.
This is what I have so far and it will allow internal users to SharePoint so now I need to allow internet user to connect to SharePoint on a completely different OU than my internal users.