Send both user name and domain name to the server during an RSA Authentication Agent for Windows authentication request
RSA Product Set: SecurID RSA Product/Service Type: RSA Authentication Agent for Windows RSA Version/Condition: 7.1
This article explains how to send both user name and domain name to the server during an RSA Authentication Agent for Windows authentication request
Agent processing of NTLM name mapping
The RSA Authentication Agent for Windows can accept logins from users in the formats of username, username@domain and domain\username. However, by default, it will remove the domain name, and send just the username to the Authentication Manager server. The agent has a checkbox labeled Send the domain name and user name to RSA Authentication Manager instead of just the user name. If this is checked, it will send a request in a format similar to domain\username.
However, it can do some normalization of the request. With the RSA Authentication Agent 7.2.1 for Windows:
domain\username. The agent will case-normalize the domain name to uppercase. It does not try to case-normalize the username. For example, Username@Domain becomes DOMAIN\Username.
username@domain. The agent case-normalizes the user name to lowercase. It does not try to case-normalize the domain name. An example is Username@Domain becomes Domain\username.
The RSA Authentication Manager server can be configured to use email addresses to identify users in an identity source, instead of using the default samAccountName. This would require an authentication request to be send in the form of user@domain, but the agent does not send in that format.