Using userPrincipalName instead of sAMAccountName


When i try to use userPrincipalName instead of sAMAccountName in my LDAP resolver, it syncs the user corretly with the right user name, but when i try to authenticate on my Windows server it gives me error 904 - The user can not be found in any resolver in this realms.

Here’s my resolver config - am i doing anything wrong or is there any pointers any of you know?

Thanks in advance for any help.

How does your UPN look like? firstname.surname@domain.tld? The @ normally separates username from realm…

Always look in the Audit log! This will help you to understand.