> Resources > Smart Credential Definitions. The
Smart Credential Definitions page appears.
Users require a User Principal Name to use a Smart Credential for Smart Login. Smart credentials configured on Identity as a Service do not have a User Principal Name (UPN)value by default if the user does not have a value defined for User Principal Name system attribute. You may want a User Principal Name value to be auto-populated for every smart credential if smart cards are being used for Smart Login.
An Identity as a Service account that is synchronized with a corporate directory containing User Principal Name values, auto-populates the User Principal Name in the user profile information when directory synchronization occurs. This value is stored in the user’s User Principal Name system attribute. See Trigger on-demand synchronization to trigger an immediate directory synchronization.
If the User Principal Name is not populated by directory synchronization, you must populate the user’s User Principal Name system attribute manually for every user that will use a Smart Credential for Smart Login.
Note: The Identity as a Service default PIV Smart Credential definition includes the User Principal Name. Complete this procedure if you are using your own Smart Credential definition.
Map a User Principal Name user attribute
1. Click
> Resources > Smart Credential Definitions. The
Smart Credential Definitions page appears.
2. Click the name of your Smart Credential definition. The Edit Smart Credential Definition page appears.
3. Click
to the right of the definition variable that represents
the User Principal Name (UPN), located under Definition
Variables. The variable setting appears.
4. Enter <User Principal Name> in the Default information field (located under Other). This is the name of the User Principal Name system attribute.
Note: If a User Principal Name definition variable does not exist, edit your smart credential definition and add it as a string. See Configure smart credential definitions for more information.