Gareth Cantrell Posted June 6, 2023 Share Posted June 6, 2023 We have recently tried to synchronise all our users from Azure AD into Hornbill. However, Azure AD allows for a maximum UPN length of 113 characters (64 before the @ and 48 after) (see https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-sspr-policy#username-policies), however Hornbill restricts us to 64 in total. This has had the undesired effect of 725 of our user base not able to access our new portal as we cannot synchronise their accounts! At this point I'm not sure what our options are, as we cannot recreate core accounts for nearly 20% of our user base. Link to comment Share on other sites More sharing options...
Gareth Cantrell Posted June 20, 2023 Author Share Posted June 20, 2023 Is there anything that can be done to fix this? Maybe use a custom attribute on the user account for SAML? Those at least have 128 characters. There is definitely no way we can reconfigure over 3000 accounts just so their UPN's fit into 64 characters. Link to comment Share on other sites More sharing options...
Steve Giller Posted June 20, 2023 Share Posted June 20, 2023 @Gareth Cantrell There is a change in progress for this, but this requires co-ordinating over multiple applications to ensure all areas of the Product stay coherent. Keep an eye out for ESP Build >3751, however taking the other actions that need to progress into consideration this will be at least two weeks away. 1 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now