Force unique usernames in a forest??

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Is it possible to force unique usernames in the forest versus in each child
domain?

I have an application server that only authenticates based on username but
authenticates against each domain controller (using LDAP). So, if
(e-mail address removed) signs in, he could actually get the same permissions as
(e-mail address removed), since the username "csmith" was correctly identified.
 
1. Fix that app
2. No you can't enforce uniqueness through native mechanisms. You would need to
disable everyone's ability to create/modify user objects and have them go
through some enterprise management tool, either off the shelf or custom made.

joe
 
Back
Top