CaptivePortal Active Directory integration with UserPrincipalName attribute





Hi,
We would like to suggest you to change the AD attribute used by the Nebula Captive Portal Authentication Server integrated with AD to allow the AD users, from SamAccountName (a very old attribute with only 20 characters without domain suffix) to UserPrincipalName, or… at least, allow us to change it.
Thank You
Comments
-
-
Yes my pleasure,
We have configured a nebula captive portal using "My AD Server" with "External user Group" for authentication, and everything is working fine for 80% of AD users.
Currently they are using the AD UPN (nome.surname@domain.xxx) to login to their workstations and all the other connected services. In some situations the UPN is different to the SAM , principally because it is limited to 20 characters. In that situations the users can't login trought captive portal using their mail address (AD UPN)
If you want more details, you can contact me via PM
0 -
Hi @Mk88_it,
I apologize for the delayed update.
Our product team will monitor this idea post (the comments and votes) to evaluate this idea.
Zyxel Melen0 -
I would agree with this idea as the UPN has been the single standard unique identifier for a user in Active Directory for years now. It is what Microsoft suggests be used as the uniqe identifer for users barring some unique non-standard requirement.
1
Categories
- All Categories
- 417 Beta Program
- 2.5K Nebula
- 160 Nebula Ideas
- 108 Nebula Status and Incidents
- 5.9K Security
- 330 USG FLEX H Series
- 286 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 259 Service & License
- 400 News and Release
- 86 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 80 Security Highlight