We have hosted a webapp built in python. We are trying to restrict access to the application via AD groups.
We followed the steps mentioned in the link below.
However all the users in the AD are able to access the application. It looks like as soon as users login, they are being granted access and added to the user list of the enterprise application. What is the way to prevent this and ensure only the users who are part of an AD group can access the application.