The only workaround I can think of is to make users who log on to virtual proxy A belong to user directory A and users who log on to virtual proxy B belong to user directory B and then write security rules based on user directories instead.
However, in my case we sync the users with an Active Directory user directory connector which means they automatically belong to the same user directory as in the AD. Is there a way to change which User Directory they belong to?
The reason I want to differentiate the users based on which virtual proxy is that one of our virtual proxies will give the users elevated access. We have two nodes and one of them should only be used by Super Users, but the Super Users can also access the other node which is used by everyone.
So two nodes with separate virtual proxies but all the users belong to the same User Directory in the AD.