Windows login doesn't allow, if username more than 20+ character

Hi,

I have the Samba PDC setup in Ubuntu 16.04 & joined the windows clients fine. But the windows 7 doesn't allow the users, if their login characters are more than 20+. I tried UPN format also ( firstname.lastname@example.com ), it didn't work! Can someone please help me!

Login-Error-Message
Sivachidambaram GanesamoorthySr System EngineerAsked:
Who is Participating?
 
Ajit SinghCommented:
The SAMaccount is limited to 20 characters for earlier clients: https://msdn.microsoft.com/en-us/library/ms679635(VS.85).aspx

However, In order to log in with more than 20 character account name, you must use a UPN logon.

The UPN is comprised of a logon name and the UPN suffix that must be appended to the name (the text following the @ symbol). The UPN must be unique within the forest.

By default, the user has a UPN suffix of "@domain_name". If multiple UPN suffixes are available, you can choose the desired UPN suffix from the list of UPN suffixes.

You may refer to the following link:

Users Can Log On Using User Name or User Principal Name
https://support.microsoft.com/en-us/help/243280/users-can-log-on-using-user-name-or-user-principal-name

Hope this helps!
1
 
LearnctxEngineerCommented:
Do you have users with sAMAccountNames longer than 20 characters? If you do, you cannot log on. I don't think it will matter if you try logging on with UPN either. sAMAccountName cannot be longer than 20 characters. This is for backward compatibility with older Windows versions.
1
 
Shaun VermaakTechnical Specialist/DeveloperCommented:
I run into these limitations regularly. This one of the reasons I always use/recommend employee numbers as usernames.
2
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
RaminTechnical AdvisorCommented:
To workaround this issue just type the first 20 characters of the password.
1
 
David Johnson, CD, MVPOwnerCommented:
@ramin it has nothing to do with the password BUT the samaccountname limitation of 20 characters
0
 
Shaun VermaakTechnical Specialist/DeveloperCommented:
I tried UPN format also ( firstname.lastname@example.com ), it didn't work! Can someone please help me!
Please check under the account tab of the user properties if the UPN is actually configured
0
 
Sivachidambaram GanesamoorthySr System EngineerAuthor Commented:
Thank you so much for everyone for clarifying my doubts!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.