LDAP AD and SAMCompatibleName
Andrei Katsuk
steep8 at gmail.com
Tue Mar 19 03:30:31 UTC 2024
> To do *what* specifically?
Someone can enter bob at company.com or REALM\bob , where REALM is the
netbios name of AD server.
The first format is UserPrincipalName and it can be easily handled by
setting up a filter in rlm_ldap config
The second format is SAMCompatibleName and is not handled out-of-the-box.
> If you have e-mails of the form "bob at company.com", is the sAMAccountName for that user always going to be "bob"? Or will it be something else?
It seems sAMAccountName contains only "bob" .
Thanks,
Andrei
More information about the Freeradius-Users
mailing list