Hi Buch,
Unfortunately, I am still not clear on your requirement.
So let me try to simplify this with an example.
You have configured your policy to include let says ALL users from User Directory Groups A, Group B.
Now ,new users are being added to the directory and you want these users to be automatically authorize to use the applications.
Please clarify if these new users belong to the existing groups (A or B) or are they part of new Group (let's say C ).
If it is later, there is no way SiteMinder can automatically grant access to the users belonging to this new group C, unless it is added to the Policy.
If you don't have a requirement to implement any restrictions and want all users belonging to all groups (including new users) to be able authorize to use this applications, then you can just select ALL while configuring the policy.
Please correct my understanding of your use case.
Cheers,
Ujwol Shrestha