I'm running Packetfence 5.1 using Active Directory as an authentication source. I want users to be able to login and register using both the username and username@domain format. I currently have two sources defined.
One for each format: One has usernameattribute=userPrincipalName One has usernameattribute=sAMAccountName The problem I have is that if a user logs in with just the username he get gets a pid of "username". I he logs in with another device using username@domain he get another username created with a pid of "username@domain". Is there a way to standardize this pid to one format or the other so only one account is created for both devices regardless of the username format? The relevant part of authentication.conf is below. [DC1] description=userPrincipalName password=SecretPassword scope=sub binddn=CN=LDAP_User,OU=Service Accounts,OU=AD Administration,OU=unit,DC=university,DC=edu basedn=OU=unit,DC=university,DC=edu usernameattribute=userPrincipalName connection_timeout=5 stripped_user_name=yes encryption=none port=389 type=AD host=192.168.1.10 [DC1 rule FacStaff] description=Group as a Condition match=any action0=set_role=default action1=set_access_duration=365D condition0=memberOf,is member of,CN=FacStaff,OU=Security,OU=Groups,OU=unit,DC=university,DC=edu [DC1 rule Students] description=Group as a Condition match=any action0=set_role=guest action1=set_access_duration=365D condition0=memberOf,is member of,CN=Students,OU=Security,OU=Groups,OU=unit,DC=university,DC=edu [DC1-SamAccountName] description=SamAccountName password=SecretPassword scope=sub binddn=CN=LDAP_User,OU=Service Accounts,OU=AD Administration,OU=unit,DC=university,DC=edu basedn=OU=unit,DC=university,DC=edu usernameattribute=sAMAccountName connection_timeout=5 stripped_user_name=yes encryption=none port=389 type=AD host=192.168.1.10 [DC1-SamAccountName rule FacStaff] description=Group as a Condition match=any action0=set_role=default action1=set_access_duration=365D condition0=memberOf,is member of,CN=FacStaff,OU=Security,OU=Groups,OU=unit,DC=university,DC=edu [DC1-SamAccountName rule Students] description=Group as a Condition match=any action0=set_role=guest action1=set_access_duration=365D condition0=memberOf,is member of,CN=Students,OU=Security,OU=Groups,OU=unit,DC=university,DC=edu Joel
------------------------------------------------------------------------------
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
