UPN Suffixes

I think this Active Directory feature must be a little known trick as I haven't seen it used on any network I've worked on. As you know, you can have users log on in few different ways. They can log on using <username>@<ad domain>, by selecting the domain from the drop-down menu, or by entering in <netbios domain name>\<username>.

In the past, I've preferred either using the drop-down or backslash method, they're easier, especially if you have a long FQDN as your AD domain name. Now I've found an incentive to use the "@" symbol method, see below:

I don't like the log on wayneh@australia.local - looks silly, let's change it to @legendary.com

Launch AD Domains and Trusts

Right-click the top level in AD Domains and Trusts and select "Properties"

Add your UPN suffix

In AD Users and Computers - Change the user or users logon to the new suffix. Too easy!

Popular posts from this blog

Get local computer UUID/GUID using Windows Powershell

gPLink and gPOptions

PSLoggedOn Getting Started on Windows Server 2008 R2