Skip navigation

Log in to create and rate content, and to follow, bookmark, and share content with other members.

000029392 - How to ignore username's NTLM or "down-level logon name" domain name prefix sent by a radius client or agent in RSA Authentication Manager 8.x

Document created by RSA Customer Support

on Jun 14, 2016•Last modified by RSA Customer Support on Dec 10, 2019

Version 3Show Document

Like • Show 0 Likes0
Comment • 0
View in full screen mode

Article Content

Article Number	000029392
Applies To	RSA Product Set: SecurID RSA Product/Service Type: Authentication Manager RSA Version/Condition: 8.x Palo Alto / Radius client
Resolution	Here is how to strip or ignore the domain name for the example COGWELLCOGS\userid. Go to Security Console > Settings > Agent Settings. In the section Domain Name Mapping, enter the domain name in the NTLM Name (for ex. COGSWELLCOGS). Enter RSAOMIT in the UPN Name. RSAOMIT is a keyword which will suppress only the NTLM Name specified. If you have more than one DOMAIN to omit, add additional mappings to RSAOMIT. Click Save to save changes. COGWELLCOGS\userid will now authenticate as user id userid.

Attachments

Outcomes

0 Comments

Recommended Content

Incoming Links

Re: RSA Security Console - remove 'domain name' input needed while authentication