Normalization enables the LoadMaster to send an Authentication Request to your server in a format that server accepts.
The LoadMaster offers four Logon Formats to send traffic to your Authentication Servers and can be specified under Virtual Services > Manage SSO > Modify > Logon Format. It’s important to note if no domain is specified during logon, then the name of your Client Side SSO is used as the domain/realm.
Not specified: The LoadMaster sends the username as it is typed with no normalization occurring.
Principalname: Sends a login request to your authentication server in the format email@example.com. If a user types the format domain\user, the LoadMaster attempts to log in using the configured format Principalname. If the authentication attempt is unsuccessful, then the LoadMaster attempts to use firstname.lastname@example.org.
Username: Sends a login request to your authentication server in the format domain\user.If a user types the form email@example.com, the LoadMaster attempts to log in using the specified format. If the authentication attempt is unsuccessful, then the Load Master will attempt using Principalname e.g firstname.lastname@example.org.
Username Only: When authenticating against RSA-SecurID, if required the LoadMaster can strip the Domain Name.