.png?sv=2019-07-07&sig=%2B3KR%2FY9jqDGADdBJ5SNkbenEQfS1qtjA%2F3x3Na9ZvSc%3D&spr=https%2Chttp&st=2023-10-02T15%3A12%3A18Z&se=2023-10-02T15%3A22%3A18Z&srt=o&ss=b&sp=r){kind=logo}
Configuring Usernames
- 24 May 2023
-
DarkLight
-
PDF
Configuring Usernames
- Updated on 24 May 2023
-
DarkLight
-
PDF
Article Summary
Share feedback
Thanks for sharing your feedback!
Configurable Usernames in Azure AD
Administrators who use the Itential Azure AD AAA adapter can use the usernameKey property field to configure a specific name attribute in the AAA response for IAP to use as the "username". If the usernameKey field is not specified, the adapter will utilize the default value of "name" to set new users.
To configure the usernameKey field, navigate to Admin Essentials in IAP. Use the search bar in the left sidebar to locate "Azure" in the Adapters menu list. Under the Configuration tab on the Properties page, enter a specific name in the usernameKey field.
Figure 1: Configure username
Why is this important?
The usernameKey provides Administrators with a configurable option to specify a custom claim in the AAA response for IAP to authenticate a user. Specifying the usernameKey as a custom attribute also prevents multiple users from having the same Azure AD display name in one IAP account. Lastly, if a user's identity is stored in Azure AS (Authentication Server), the Azure AD service can utilize usernameKey to check whether that "username" exists or not.
Property Schema
"usernameKey": {
"type": "string",
"description": "Key of the user token to be utilized as the username",
"default": "name"
},
