How to set username format sent in claim within a federated scenario?
So the situation is as follows:
I am a developer working on a project that involves a federated sign-on via the Okta cloud service (Template WS-Fed). Our local Windows 7 machines (running IIS Express) and our dev server running Windows Server 2008 (IIS 7) seem to work as expected by returning a username in the upn format (ie: firstname.lastname@example.org). However, when running the same code on a Windows Server 2012 box (IIS 8) the UPN is not returned in favor of the older format Domain\User. I know there are a lot of variables here with the inconsistent landscape.
Is this something at the server OS level or IIS level? In IIS we have windows authentication enabled but I am not quite sure if that is involved here or is it simply a pass through on the IIS instance. In addition, I suppose something at the Active-Directory level could be at fault (but I am by no means an AD expert).
Something to note is it does not appear to be Okta/Okta configuration we have defined (Template Ws-Fed) as it works locally and I tried switching out the test configuration with the dev configuration (that is working on the Win 2008 server) and got the same result with the older username format. Any thoughts would be much appreciated. Thanks in advance!
If I disable Windows Authentication how till the pass through occur to Okta when someone is on the network? They shouldn't need to enter their network credentials if they are already logged on internally. Thanks for the assistance!