Does it possible to restrict admin or specific user to login/access file at specific IP address with mod_security?

Due to the security requirement, we are required to some bind user IP with user names.
I’ve tired to configure modsecurity.conf as below, and disable all other configs

    SecRuleEngine On
    SecRule REQUEST_HEADERS:nc_username "@streq admin" chain,deny,id:003
    SecRule REMOTE_ADDR "@streq"

but seems doesn’t work.
anyone have solution to do with that

have you found a solution for this?