Hello, been reading a lot these days about certs and SSO but cannot find a way to configure what is needed: What I want to do Users log on to their laptops with a cached AD domain user account. the Junos client starts automatically and connects via a user certificate stored on the laptop. Afterwards some AD role mapping takes place and users can acess files shares, intranet etc without any further need to put in credentials. What I accomplished so far version 1 Have users login to Junos with AD credentials, get roles mapped, get access to internal ressources. version 2 Get a user cert from our AD cert server and login automatically via Junos client. But access to internal ressources asks for credentials again as the user name in the cert is like "Jane Doe" where I need it to be "jdoe". How do I... Get the correct user name into the certificate? Tried to put it into the Subject field manually when requesting/issuing the cert, but that just didn't end up in the cert. OR Somehow pass the user credentials from the laptop Windows login on to the Junos client?
... View more