Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

Logon Format - Normalisation

Normalization enables the LoadMaster to send an Authentication Request to your server in a format that server accepts.

 

The LoadMaster offers four Logon Formats to send traffic to your Authentication Servers and can be specified under Virtual Services > Manage SSO > Modify > Logon Format. It’s important to note if no domain is specified during logon, then the name of your Client Side SSO is used as the domain/realm. 

 

Logon_Format.JPG

 

Not specified: The LoadMaster sends the username as it is typed with no normalisation occurring.

Principalname: Sends a login request to your authentication server in the format user@domain.com. If a user types the format domain\user, the LoadMaster attempts to log in using  domain\user.  If the authentication attempt is unsuccessful, then the LoadMaster attempts to use the configured Domain/Realm user@domain.com.

Username: Sends a login request to your authentication server in the format domain\user.If a user types the format user@domain.com, the LoadMaster attempts to log in using "user@domain.com". If the authentication attempt is unsuccessful, the Load Master will attempt using Username" e.g "domain\user".

Username Only: When authenticating against RSA-SecurID, if required the LoadMaster can strip the Domain Name.


Was this article helpful?
0 out of 0 found this helpful

Comments