Add UPN to existing policy

Question

I have an existing access policy - login page ---- ad auth ---  sso.  I need to add userprincipalname as a username option. &nbsp;
Do I add ad query before ad auth or add a branch rule to the login page?&nbsp;

the-messenger · Answer

In our AD, UPN and samaccountname do not contain the same user or domain.  Our upn is our email address using a different formant for the name portion than we use for our ad user name.&nbsp;
as an example 
userprincipalname/emailaddress = lastinitialfirstname@domain.com
samaccountname = first-two-initialslastname&nbsp;

the-messenger · Answer

I did this changing to LDAP.  With LDAP I can use the mail attribute and leave UPN alone, at this point.&nbsp;

Forum Discussion

Add UPN to existing policy

2 Replies

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Add LTM to existing HA pair

Add UPN to existing policy

Access policy, LTM policy and iRules

Manage F5 BIG-IP Advanced WAF Policies with Terraform (Part 1 - Policy Creation)

Manage F5 BIG-IP Advanced WAF Policies with Terraform (Part 5 - Working with Policy Builder)