![]() ![]() Using the alternate ID enables you to adopt SaaS providers like Office 365 without modifying your on-premises UPNs. When configured for alternate ID, AD FS allows users to sign in using the configured alternate ID value, such as email ID. AD FS already supports using any form of user identifier that is accepted by Active Directory Domain Services (AD DS). This enables administrators to specify an alternative to the default UPN to be used for sign-in. For more information on how the UPN is created, see Azure AD UserPrincipalName population.Īctive Directory Federation Services (AD FS) enables federated applications using AD FS to sign in using alternate ID. Use of any other sign-in method instead of UPN constitutes alternate ID. Consider a user Jane Doe with UPN and email address Jane might not be even aware of the UPN as she has always used her email ID for signing in. This is particularly common in scenarios where their UPN is non-routable. This article addresses the small percentage of customers that cannot remediate UPN's to match.įor example, they can use their email ID for sign-in and it can be different from their UPN. Microsoft's recommended best practices are to match UPN to primary SMTP address.
0 Comments
Leave a Reply. |