
Hi @Jonathan Amar ,
As to excluding devices, you can check this doc for more information.
From the browser side, unfortunately there's no such policy/settings to prompt for authentication when users switch profiles. A better (or ideal) implementation of this, IMO, could be having separate user accounts on the OS level, each account having a single Edge profile accordingly.
EDIT:
There's group policy called ForceEphemeralProfiles which controls whether user profiles are switched to ephemeral mode. An ephemeral profile is created when a session begins, is deleted when the session ends, and is associated with the user's original profile. The ephemeral mode may meet your requirements, and you can have a try.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Best Regards,
Shijie Li