Mapping '$requestContext.principalName'

Cantor, Scott cantor.2 at
Thu Apr 16 09:26:32 EDT 2020

On 4/16/20, 9:16 AM, "users on behalf of Joshua Brodie" <users-bounces at on behalf of josbrodie at> wrote:

> With the number of database lookup requiring the uid (PIN only exists in the ADs) -- is there a way, when a user uses
> PIN, instead of uid as the login name, to map the PIN to login name -- so the database queries can still work as is?

That is literally the entire function of the subject canonicalization subsystem and why it's a crucial part of the authentication system. It's covered extensively in the authentication documentation.

-- Scott

More information about the users mailing list