- Introduction
- Installation
- Getting Started
- Setup the Environment
- Setup the UKG Pro Connection
- Setup the Active Directory Connection
- Delegation of Control
- Setup Rules
- Link (Identity Match)
- Employee Filter
- Auto Provision
- Auto Provision Conditions
- User Logon Name
- User Logon Name Suffix
- Password
- Password Never Expires
- Setup Mappings
- Field Mappings
- Enable Account
- Container
- Network Access Permission
- Custom Attributes
- Group Mappings
- Working with Expressions
- String Expressions
- Bool Expressions
- Quick Expressions
- Working with Conditional Expressions
- Working with Constants
- Ignore Constant
- IsInsert Constant
- IsUpdate Constant
- IsDisable Constant
- Auto Constant
- Supported Fields
- Person (UKG)
- Employment (UKG)
- Job (UKG)
- Location (UKG)
- Org Level 1 to 4 (UKG)
- Project (UKG)
- Platform Configuration (UKG)
- User (Active Directory)
- Sending Email to UKG Pro
- Notifications
- SMTP Settings
- Scheduling
- Viewing the Logs
- Activate a License
- Security
- Introduction
- Installation
- Getting Started
- Setup the Environment
- Setup the UKG Pro Connection
- Setup the Active Directory Connection
- Delegation of Control
- Setup Rules
- Link (Identity Match)
- Employee Filter
- Auto Provision
- Auto Provision Conditions
- User Logon Name
- User Logon Name Suffix
- Password
- Password Never Expires
- Setup Mappings
- Field Mappings
- Enable Account
- Container
- Network Access Permission
- Custom Attributes
- Group Mappings
- Working with Expressions
- String Expressions
- Bool Expressions
- Quick Expressions
- Working with Conditional Expressions
- Working with Constants
- Ignore Constant
- IsInsert Constant
- IsUpdate Constant
- IsDisable Constant
- Auto Constant
- Supported Fields
- Person (UKG)
- Employment (UKG)
- Job (UKG)
- Location (UKG)
- Org Level 1 to 4 (UKG)
- Project (UKG)
- Platform Configuration (UKG)
- User (Active Directory)
- Sending Email to UKG Pro
- Notifications
- SMTP Settings
- Scheduling
- Viewing the Logs
- Activate a License
- Security
User Logon Name
The User Logon Name rule is used to define how the cn, userPrincipalName and sAMAccountName LDAP attributes will be defined during user provisioning.
This rule allows you to specify multiple naming formats to use for scenarios where the user logon name may already be in use by another user. Remember that each user logon must be unique, so be sure to provide additional naming formats to avoid a conflict and failure point.
If required you can use different formats for sAMAccountName and cn (Common Name) as shown below.
Connect to AD will load default naming formats, which are evaluated from the top down during provisioning. You can change each one of these as required by your security policies.
The default naming formats are:
|
Person.PreferredName + '.' + Person.LastName
|
john.doe
|
|
Person.PreferredName + '.' + Person.LastName + '1'
|
john.doe1
|
|
Person.PreferredName + '.' + Person.LastName + '2'
|
john.doe2
|
|
Person.PreferredName + '.' + Person.LastName + '3'
|
john.doe3
|
|
Person.PreferredName.SubString(0,1) + '.' + Person.LastName
|
j.doe
|
|
Person.PreferredName + '.' + Person.LastName.SubString(0,1)
|
john.d
|
|
Person.PreferredName + '_' + Person.LastName
|
john_doe
|
|
Person.PreferredName + Person.LastName
|
johndoe
|
|
Employment.EmployeeNumber
|
001234
|
|
Person.LastName + Person.DateOfBirthYear
|
doe75
|
|
Person.LastName + '.' + Person.DateOfBirthYear
|
doe.75
|
|
Person.LastName + '_' + Person.DateOfBirthYear
|
doe_75
|
The logon name value that is used during provisioning is available to be used in other mappings via the User.userPrincipalName or User.userPrincipalNamePrefix field.
In this example below the Mail mapping references the User.userPrincipalName field to define the users mail attribute value.
In this example below the Mail mapping references the User.userPrincipalNamePrefix field to define the users mail attribute value.
