Idea ID: 2873559

Login to ALM with email Adress

Stefan Bormet Stefan Bormet
Status : New Idea

We need the possibility to Login to ALM with email Adress. 

I want to Import LDAP Users and the UserID Should be the AAD (Azure Active Directory Field) UserPrincipalName (which is the Email Adress in our Configuration)

Parents Comment Children
  • in reply to leobor

    Yeah, LDAP... but you cannot use the Email Adress to login... Wich ist the UPN Field in Active Directory.. Thats my Point.

  • in reply to Stefan Bormet

    I mean in the LDAP Filter except (&(objectCategory=Person)(sAMAccountName=*)(MemberOf=....) I want to Use the LDAP Filter(&(objectCategory=Person)(UserPrincipalName=*)(MemberOf=....) 

    Because the UserPrincipal Name is the Email Adress (contains @) it is not possible to create a UserAccount in ALM... 

  • in reply to Stefan Bormet

    Now what? Soon my company will migrate from Active Directory to Azure Active Directory, then LDAP is no longer available, because the sAMAccount Field name is no longer Available, comparable Field are filled with email Adress. Then the Security Risk valuation will increase, because I have to switch to local User Management, plus the User Acceptance of ALM will decrease. 

  •   in reply to Stefan Bormet

    If your company will migrate from AD to Azure AD, it means the authentication of ALM will be changed to SSO from LDAP. You can map the Azure AD field of email address to ALM SSO unique field of 'IdentityKey'. With such configuration, the users are able to login with email via Azure AD and then the authenticated users are mapped to ALM users by the identity keys. 

  • in reply to gbin

    Thank you for your helpful answer, I will activate SSO instantly