The SBC Edge system supports multiple forms of authentication, which authentication method is used depends on the prototype of credentials presented by the user when attempting to login, either one of the following:
username
simple alphanumeric format – applicable to local and RADIUS users user@domain
format – applicable to Active Directory and known as the userPrincipalName attribute domain\username
format – applicable to Active Directory and known as the SAMAccountName attribute in Active Directory If the user presents credentials in either the user@domain
or domain\username
format, the SBC attempts to authenticate the user against Active Directory. If the user is authenticated belongs to a group mapped with a Ribbon SBC access level, then they are given access and granted permissions. If the user fails to authenticate, they are denied access and no further attempt to authenticate the user is made.
If the user presents credentials in the simple alphanumeric format, the SBC first attempts to authenticate the user against the Local User Table. If the user's credentials are not found or the user's password does not match, authentication is then attempted against the RADIUS server with respect to the RADIUS User's class mapping with the SBC access level.