Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-31326: What attributes are used to look up users for Privileged Access Service?

Privileged Access Service ,  

19 April,20 at 04:16 AM

Question: What attributes are used to look up users for Privileged Access Service portal logins?

Answer: The following attributes are checked for an AD user when looking up by name:
  • UPN
  • Email
  • SAM Account Name
Domain name is required to lookup a sAMAcountName. If not specified (by prefixing the name with domain), the connector will use its setting 'domainName', which is set during the connector registration. This can be problematic for customers that have multiple domains. Users will need to use UPN or domain\name.

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.