How would I go about explicitly denying a user who is a member of an AD group with a role associated with that AD group? I have a couple of specific situations where a user was previously employed by a customer and those users are not allowed to access those customers servers.
Do you have any ideas on how I could best address this issue?
Do you have any ideas on how I could best address this issue?