20-04-2020, 08:03 AM
(This post was last modified: 20-04-2020, 08:19 AM by diego.azevedo.)
We are in the middle of an AD domain migration project. Accounts from source domain were sync’d to the target domain, including SID History.
We noticed ASG is creating a duplicate identity in the database when users login to the app using the account in the target domain. This means a new profile is created, and all information associated with the previous profile is not carried across (credentials, private connections, etc.).
I was just wondering if there is any workaround available that would enforce the app to look at other attributes to determine that the account in the target domain is, in fact, the same account as in the source domain.
Some attributes that are not changed between source/target domains are:
samaccountname
Mail
SID History (target account has the SID of the source account)
I am aware of the export/import functionality, but was trying to avoid that if possible.
We noticed ASG is creating a duplicate identity in the database when users login to the app using the account in the target domain. This means a new profile is created, and all information associated with the previous profile is not carried across (credentials, private connections, etc.).
I was just wondering if there is any workaround available that would enforce the app to look at other attributes to determine that the account in the target domain is, in fact, the same account as in the source domain.
Some attributes that are not changed between source/target domains are:
samaccountname
SID History (target account has the SID of the source account)
I am aware of the export/import functionality, but was trying to avoid that if possible.