Saml integration, but i have a problem with accounts


I setup nextcloud to use saml with our IDP, everything works perfect, but all the user than have an account in the IDP login succesfully in the nextcloud, how i setup nextcloud to only a group of user login sucesfully in nextcloud. Or how i setup to all the new users created by the IDP will be disabled state by default.