Normalization enables the LoadMaster to send an Authentication Request to your server in a format that server accepts.
The LoadMaster offers four Logon Formats to send traffic to your Authentication Servers and can be specified under Virtual Services > Manage SSO > Modify > Logon Format. It’s important to note if no domain is specified during logon, then the name of your Client Side SSO is used as the domain/realm.
Not specified: The LoadMaster sends the username as it is typed with no normalization occurring.
Principalname: Sends a login request to your authentication server in the format email@example.com. If a user types the format domain\user, the LoadMaster attempts to log in using domain\user. If the authentication attempt is unsuccessful, then the LoadMaster attempts to use the configured Domain/Realm firstname.lastname@example.org.
Username: Sends a login request to your authentication server in the format domain\user.If a user types the form email@example.com, the LoadMaster attempts to log in using "firstname.lastname@example.org". If the authentication attempt is unsuccessful, the Load Master will attempt using Username" e.g "domain\user".
Username Only: When authenticating against RSA-SecurID, if required the LoadMaster can strip the Domain Name.