Skip to main content

User identification

All authentication methods require a unique identification of each user. Often this is realized via a unique term, which is sometimes referred to as "User Principal Name" (UPN). For Microsoft-related authentication methods, the UPN is mostly the user’s email address.

You can configure each user login (e.g., for OAuth2) via one of the following 3 methods:

  1. You enter a user template in property "securitySSOUserTemplate" (above "loginList"), e.g., $<USERTITLE@demo.onmicrosoft.com>. (The variable $USERTITLE will automatically be resolved according to the user’s title/username.) For login, users can then type only their usernames (= the first part of their email addresses), and the domain will automatically be appended for the authentication process.

  2. In the web client, for each user, you set the UPN as the Employee’s "Username". In the Designer’s "Users" tab, this will appear in column "title".

  3. You set the UPN, for each user, in property "oauth2Login" of the user model ("system" > <your system> > tab "Users" > <a user> > Extended > oauth2Login)

    user_properties_extended