It is possible, but it requires you to have an access to your database. Keep the default rules on, and create a new Custom rule. Specify the Target as MAC Address, and fill the content with MAC Addresses you get by running this query:
SELECT distinct MACAddress FROM [dbo].[UDT_Endpoint]
You can use Database Manager to get the results, it is installed with UDT and you will find it in the Start menu in the SolarWinds Orion\Advanced Features folder.
If you have a huge number of MAC Addresses, the website may throw some errors about page content length, so you actually may want to slice the list and create multiple such rules. I tested this with around 700 devices and it worked for me.
Once the rules are created, delete or disable the "Any MAC Address" rule. Keep the "Any IP Address" and "Any Hostname" rules enabled.
This will create the baseline. If a new MAC is detected and it doesn't fit the baseline, it will be marked as Rogue.
Thanks for the reply! I will give that a shot.
Thanks for the info. It is working as expected and new devices showing up on the network are now displayed as "rogue" devices since they are not a part of that list. This makes the Rogue devices utility much more effective! Thanks!