Is there a way for a AD user to login to Portal without adding the domain prefix to the username? Web tier authentication is not an option, but for a better user experience, a customer wants to avoid typing the "domain\". Is this possible?
There is the ability to add AD users to Portal and have them login without the "DOMAIN\username" or "username@DOMAIN", but the method would make it so they can only login using one format and that is "username". If they attempt this workflow and decide to login as "DOMAIN\username" or "username@DOMAIN" it will actually create a new AD account.
When configuring the Windows Authentication in portaladmin, security, config, update Identity Store, we would want to include the parameter: “checkForMultipleUsernameFormats”: "true". We then will want to either go into portaladmin, security, config, Update Security Configuration, and change "enableAutomaticAccountCreation" to "true" (this will only allow for automatic account creation when valid AD credentials are provided) or we can go into portaladmin, security, users, create user and provide the customers proper AD information (username format would be = "username") and be sure to change "Provider" to Enterprise Identity Provider.
Either method for adding users should result in AD username formats to not include the DOMAIN\username or username@DOMAIN
Thanks a lot for your answer, exactly what I needed to know.
Retrieving data ...