User Principal Name (UPN)
An LDAP attribute value in the form of a User Principal Name (UPN) may be used as a direct source for a user's host name or as an element in a search filter for a secondary LDAP directory.
A UPN generally takes the form of an email address, such as
Enter the name of the LDAP attribute in the authenticating directory that
contains the UPN value.
To determine the user's name on the host computer, MSS looks at the user's
UPN value in LDAP. Then the portion before the
@ sign is used either
as the user's host name itself (when the UPN is selected for mapping directly without the use of a secondary LDAP directory).
For example, a UPN of
firstname.lastname@example.org result in the user's name on the host of "
auser" (the portion before the
-- or --
as an element in a search filter for a secondary LDAP directory.