IdPFilterRequirementNOT
NOT Attribute Filter Matching Rule
This matching rule evaluates to true if its contained rule evaluate to false.
Define the Rule
This rule is defined by the element <PolicyRequirementRule xsi:type="basic:NOT">
, for policy requirements rules, and <PermitValueRule xsi:type="basic:NOT">
, for permit value rules.
The rule then contains one <Rule xsi:type="MATCHING_RULE_TYPE">
element that is, itself, a filter matching rule.
Example Policy Requirement Rule using the NOT Match Function
<PolicyRequirementRule xsi:type="basic:NOT"> <basic:Rule xsi:type="basic:PrincipalAuthnticationMethod" value="urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport"/> </PolicyRequirementRule>