ALM supports LDAP authentication for many years. In the recent versions it is even possible to define multiple LDAP providers, including ActiveDirectory. Take a look at https://admhelp.microfocus.com/alm/en/16.00-16.0.1/online_help/Content/WebAdmin/user_management_tab.htm for more details.

ALM supports LDAP authentication for many years. In the recent versions it is even possible to define multiple LDAP providers, including ActiveDirectory. Take a look at https://admhelp.microfocus.com/alm/en/16.00-16.0.1/online_help/Content/WebAdmin/user_management_tab.htm for more details.

Yeah, LDAP... but you cannot use the Email Adress to login... Wich ist the UPN Field in Active Directory.. Thats my Point.

I mean in the LDAP Filter except (&(objectCategory=Person)(sAMAccountName=*)(MemberOf=....) I want to Use the LDAP Filter(&(objectCategory=Person)(UserPrincipalName=*)(MemberOf=....) 

Because the UserPrincipal Name is the Email Adress (contains @) it is not possible to create a UserAccount in ALM... 

Now what? Soon my company will migrate from Active Directory to Azure Active Directory, then LDAP is no longer available, because the sAMAccount Field name is no longer Available, comparable Field are filled with email Adress. Then the Security Risk valuation will increase, because I have to switch to local User Management, plus the User Acceptance of ALM will decrease. 

If your company will migrate from AD to Azure AD, it means the authentication of ALM will be changed to SSO from LDAP. You can map the Azure AD field of email address to ALM SSO unique field of 'IdentityKey'. With such configuration, the users are able to login with email via Azure AD and then the authenticated users are mapped to ALM users by the identity keys. 

Thank you for your helpful answer, I will activate SSO instantly