- Jamf Nation Community
- Products
- Jamf Connect
- Re: Jamf Connect Login user "Domain\Username"
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Jamf Connect Login user "Domain\Username"
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 06-12-2019 12:14 PM
With Jamf Connect Login, using ADFS native app, users are created using the following convention: "domainusername", does anyone know of a way to get this to just "Username"?
Labels:
6 REPLIES 6
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 06-13-2019 01:57 PM
I'm sorry, i'm not sure I understand the question. Are you saying that the local users account name is actually set to domainusername? We are using Jamf Connect with Azure and when the local account is created on the MAC it is the same thing we have in Azure for the username, there is no domain added.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 06-18-2019 10:16 AM
@mlawniczak Thanks for the reply. We were using Azure, but were recomended to start using an ADFS native app for several reasons. With this new native ADFS app, users log in with just "username", but when the user folder is created, it gets "DomainUsername". This causes apps like MS Word to fail because they dont know how to escape the character.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-20-2019 10:18 PM
@friveraLC We are having the exact same issue. Did you find a solution?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-20-2019 11:51 PM
I wrote a FR to customize the way the name is build:
https://www.jamf.com/jamf-nation/feature-requests/8613/add-posibility-to-customize-the-recordname-of-users-created-with-jamf-connect-login
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 08-23-2019 02:14 PM
Hi @alfredhart We looked into changing the Claim Rule for the the ADFS native app so that when Jamf Connect Login looked for "unique_name" it would return something similar to samAccountName instead of "DomainUsername". This can be done, but required ALOT more testing and approval. We went back to using an ADFS native app, with the Azure options in Jamf Connect, instead of a straight ADFS native app. Each respond back to Jamf Connect Login with a proper token, but when using Azure as the IdP we dont have to pass the "unique_name" to Jamf Connect Login.
Thanks @whitebeer , looked into that as well, we went with the "unsupported" but working way, of Azure IdP and ADFS native app. We needed to change some ADFS settings so that it would allow the User Agent String from Jamf Connect Login to NOT pass a kerberos ticket, but allow Chrome to pass a kerberos ticket, this was a nightmare to figure out but it works now.
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 09-04-2019 01:07 PM
@friveraLC Would you be able to share some screen shots or configuration files to show what was successful? Are you on the MacAdmins Slack to direct message? Thanks.
