Hi @BK IT Staff ,
I just came across the thread below which discusses the removal of the "ms-Exch-SMTP-Accept-Authoritative-Domain-Sender" permission on a frontend receive connector:
ms-Exch-SMTP-Accept-Authoritative-Domain-Sender deny seems not to work on FrontendTransport connector
According to the information shared by Andy(Microsoft MVP), "things and perms have changed a bit since Exch 2013 in that regard". So I am assuming that it's likely this applies to "ms-Exch-SMTP-Accept-Any-Sender" permission as well.
Given this, personally I would suggest giving it a try by creating a Hub receive connector and test to see if it can meet your requirement. Here's a blog I found which could be of some help:
Remove the Ms-Exch-SMTP-Accept-Any-Sender permission doesn’t work
Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.