User principal name

User Principal Names ( UPN ; German  UPN ) to the Kerberos -Authentifizierungs system as some of Microsoft's Active Directory is used as an alias for the Realm be configured -based username. They allow e.g. B. the more convenient logon to Windows computers and servers under a user name that is more like an e-mail address, regardless of technical details such as the exact name of the Active Directory domain used. The UPN is linked to the user account. The UPN format is typically similar to an RFC 822 email address.

A Kerberos principal name consists of two parts, the user's login name (e.g. michael ) and the user principal name suffix (UPN suffix). When logging in to Windows, the two parts are separated by an "@" sign (here e.g. michael@beispielfirma.xy ). The user principal name suffix is ​​an alias for longer domain names in order to be clearer and shorter (e.g. only examplecompany.xy instead of Kundenbetreuung.koeln.deutschland.beispielfirma.xy ), or in case of multiple domains only one, catchy name which applies to all domains. They are entered in the Active Directory administration under the properties of "Active Directory Domains and Trusts".

See also

• Realm (computer science)
• Kerberos (computer science)

Individual evidence

1. ↑ Kerberos Principal Name Canonicalization and Cross-Realm Referrals , RFC 6806 , November 2012
2. ↑ http://technet.microsoft.com/de-de/library/cc739093%28WS.10%29.aspx
3. ↑ http://searchexchange.techtarget.com/definition/User-Principal-Name

Web links

• Dictionary on technet.microsoft.com
• Article "User Name Formats" on MSDN