Hi Ali,
I've configured this task to match all users with a certain SAP role.
You can always try to find a role that suits you case. Let's say if you want all users that are qualified to access a certain Fiori app, they must have a Fiori role in the backend that gives them RFC communication authorizations.
Perhaps if your problem is a little more complex, you can share with us by opening a new discussion thread.
Regards,
Vicente