03/26/2020 6 People found this article helpful 454,208 Views
Users are being recognized correctly by SSO Agent at first login but after they authenticate to external exchange server, the username is the email address.
After the authentication to the external exchange server, the DC Logs may retrieve the email address as Domain Name and so the firewall policies won't be correctly applied.
NetAPI / WMI correctly recognize users with their domain username.
DC Log Subscription and DC Log Polling methods will retrieve the wrong username in cases like this.
Here's how to solve the issue:
Now usernames should be correct even after authenticating to exchange server and firewall policies will be correctly applied.