Skip to end of metadata
Go to start of metadata

The UX system supports multiple forms of authentication, which authentication method is used depends on the prototype of credentials presented by the user when attempting to login, either one of the following:

  1. username simple alphanumeric format – applicable to local and RADIUS users
  2. user@domain format – applicable to Active Directory and known as the userPrincipalName attribute
  3. domain\username format – applicable to Active Directory and known as the SAMAccountName attribute in Active Directory

Active Directory Authentication

If the user presents credentials in either the user@domain or domain\username format, the UX attempts to authenticate the user against Active Directory. If the user is authenticated belongs to a group mapped with a UX access level, then they are given access and granted permissions. If the user fails to authenticate, they are denied access and no further attempt to authenticate the user is made.

Local and RADIUS Authentication

If the user presents credentials in the simple alphanumeric format, the UX first attempts to authenticate the user against the Local User Table. If the user's credentials are not found or the user's password does not match, authentication is then attempted against the RADIUS server with respect to the RADIUS User's class mapping with UX access level.