Autenticate with AD previsously created user
JRPonte opened this issue · 4 comments
Hello,
I was looking for a way to authenticate users in DNN 9.1.1 using Azure AD and found your project.
I have a multi-portal installation using DNN 9.1.1 and I have already created about 80 users. After installing azureadprovider version 3.00.00 and configuring everything I got this error:
A user is already using this email address. Please register under a different email address or obtain a password reminder using your existing email address.
How can I update all users so that next time they authenticate they can use Login with AD and not username and password?
Thank you
I forgot to mention that all users are from the same AD domain and there is no portal registration, so only users that are in specific users roles can update the portal, all others will should be treated like unauthenticated users.
You can try by changing the "Id" claim mapping for something that matches your current usernames. i.e. Are you using e-mails as usernames? Then you can use the "upn" or "unique_name" claim as ID mapping..
I still can't authenticate with AAD a user that was created directly in DNN.
The error is this:
A user already exists for the user name specified. Please register again using a different user name.
The username is the email, so if someone has the same username and the authentication from AAD is correct it should be autehenticated in DNN.
Hi @JRPonte, normally the are not created directly in DNN, allowing the provider to populate them, bu I can imagine your scenario (you had already the users and you installed later the Azure AD module, and want to map existing users).
To do that:
- Ensure the claim you use in the mapping "Id" has the same user value you have in your existing user (check in DB)
- Ensure the "IdentitySource" profile propery value for that user is set to "Azure"
Hope this helps!