Forum Discussion

Jason_46956's avatar
Jason_46956
Icon for Nimbostratus rankNimbostratus
Nov 07, 2011

Using different field to identify user when using Active Directory as AAA server

All,     As the Subject/Summary says - we would like to use an alternate field for the identification of the user.     We were previously using LDAP and it was a simple matter to customise...
config
design
Jason_46956's avatar
Jason_46956
Icon for Nimbostratus rankNimbostratus
Nov 08, 2011
Not sure what happened with my original Subject line, but the important bit of information missing is that this is using the APM module.

 

 

So, it is not for authenticating administrators, but for authenticating users accessing a website behind an APM logon form.

 

 

What we would like is for the user to be able to use their email address instead of using their sAMAccountName to identify themselves.

 

 

The bit about using a 'LDAP Query' was talking about adding a pipeline step in the APM Policy Editor that used the entered user email address to do an LDAP lookup on AD, pulling out their sAMAccountName, and then passing this through to the 'AD Auth' step.

 

 

Hope this is a little clearer now.

 

 

Jason