Environment
- Access Manager 4.5.1
Resolution
- Kerberos Contract / method has been configured to get used with Office 365
- Kerberos Method has been configured with the following properties
- with a SearchQuery for the user "cn" or "mail" attribute
"(&objectclass=person)(|(cn=%Ecom_User_ID%)(mail=%Ecom_User_ID%)))" - FALLBACK_AUTHCLASS com.novell.nidp.authentication.local.PasswordClass
- On the used FALLBACK_AUTHCLASS the following property has been configured
- Query (&(objectclass=person)(uid=%Ecom_User_ID%))
- The 'Auto-Populating the Username on the Identity Server Login Page' IDP server options has been set