Currently, the way Safeguard works with external federation, is that each email domain (e.g. domain.com, child.domain.com, domain2.com) need to be configured individually in the system as an authentication realm for two factor authentication. The overhead for keeping this list of realms up to date is not desirable. Need the ability to wildcard realms (e.g. *.domain.com) to be added to the solution.