Solved

Active Directory Fields used to login

Posted on 2014-01-17
4
345 Views
Last Modified: 2014-01-21
We are trying to set up a single sign-on solution and I was asked if there is another field we can use in Active Directory for login Authentication. Basically they want a user to be given two different ways they can log into the AD domain. We currently log in with First Initial Last name and the password. They want to also use firstname.lastname. So use either JDOE or John.Doe as the user name for the same account. Is that possible in Active Directory?
0
Comment
Question by:JohnMantsch
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 40

Accepted Solution

by:
footech earned 200 total points
ID: 39790016
No (but let me qualify that).
You have two possible formats for providing the user logon name.  One is the pre-Windows 2000, in the form of DOMAIN\username (in many cases you can omit the DOMAIN\ portion as it is used automatically).  The second is the UserPrincipalName (UPN), in the form of username@domain.com.  The username portion between does not have to be the same between the pre-Windows 2000 and UPN forms (but it's usually a good idea to keep these the same).  The suffix portion of the UPN (@domain.com) can vary (i.e. you can have multiple UPN suffixes within a domain), but only one can be valid for a particular user.
So you could have both of the following be valid:
DOMAIN\jdoe
john.doe@domain.com (but it's more typical for this to be jdoe@domain.com)
0
 
LVL 5

Expert Comment

by:alicain
ID: 39790043
I'll second the "No" answer...it'd be a nice new feature request.
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 39791099
If I can understand your requirement, this is requirement for Microsoft O365 Suite or some thing like that.

What you need to do, just change upper user logon name (UPN) on account tab of user properties in AD to Firstname.Lastname (Which is equal to Email Alias hopefully).
Also you need to specify UPN Suffix that is registered in O365 portal. If its already not there you need to create one through domains and trust.

When user logon to workstation \ network shares, he actually use User logon name (Pre windows 2000) for that.
You can check on client computers the name of his profile folder, you will find it is same as pre windows 2000 logon name

Mahesh
0
 

Author Closing Comment

by:JohnMantsch
ID: 39797201
Thank you
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question