Configure allowed domain names for usernames

Out of the box, Adaxes doesn't allow selecting a domain name for usernames e.g. on the user creation form. A default name is always used – the domain DNS name for Active Directory domains, and the primary domain name for Microsoft Entra domains.

However, you can allow users to manually select the domain name from a drop-down list.

Also, you can change which domain name will be selected by default when it is not specified e.g. when a user is being created via a script.

To do this, you need to use property patterns. Adaxes provides a built-in property pattern, User, that is applied to all user accounts by default. In this tutorial, you will learn how to use the property pattern to configure the default and the allowed domain names for the username.

  1. Launch Adaxes Administration console.

     How { #collapse1}
    • On the computer where Adaxes Administration console is installed, open Windows Start menu.

    • Click Adaxes Administration Console.

  2. Expand Adaxes service \ Configuration \ Property Patterns \ Builtin and select User.

  3. In the section located to the right, right-click the Username property, and then click Edit.

  4. In the dialog that opens, click Configure in the Domain section.

  5. Select a managed domain and click Edit to configure allowed domain names for usernames in that domain.

    Allowed domain names can only be selected from the alternative UPN suffixes for Active Directory domains and verified custom domain names for Microsoft Entra domains.

  6. Click Save changes.

Different patterns for different users

By default, property pattern User is applied to scope All Objects.

This means that the settings of the property pattern will be applied to all domains managed by Adaxes. If you want to apply different settings for different organizational units or domains, create a separate property pattern for each OU or domain.

 How to create a property pattern { #howto_multiple_pattern}
  • Right-click Property Patterns, point to New and click Property Pattern.

  • Enter a name for the new property pattern and click Next.

  • On the Object Type step, select User.

    Click Next.

  • On the Configuration step, configure options for a property and click Next.

  • On the Activity Scope step, click Add.

    Select from the following items:

    • Domain – select to apply the property pattern to all users in a specific domain.

    • OU or Container – select to apply the property pattern to users located in an organizational unit or container.

    • Group – select to apply the property pattern to members of a group.

      Assignments over group members are not applied during user creation.

    • Business unit – select to apply the property pattern to members of a business unit. To select a business unit, open the Look in drop-down and select the Business Units item.

    You can exclude specific organizational units, business units, groups, and domains from the activity scope of the property pattern. For example, if you've assigned the property pattern over the whole domain, but do not want it to apply to a specific organizational unit, you can exclude the organizational unit from the activity scope. To exclude an object, select the Exclude the selection option in the Assignment Options dialog.

     Step by step { #exclude_scope}
    • Click the object you want to exclude.

    • In the Assignment Options dialog, select the Exclude the selection option.

    • Click OK.

  • When done, click Finish.