All login properties are searched
during login. If multiple entries or no entries are found, an exception
is thrown. For example, if you specify the login properties as uid;mail and
the login ID as Bob, the search filter searches for uid=Bob or mail=Bob.
When the search returns a single entry, then authentication can proceed.
Otherwise, an exception is thrown.
Supported configurations: If you define
multiple login properties, then the first login property is programmatically
mapped to the federated repositories principalName property. For example,
if you set
uid;mail as the login properties,
the LDAP attribute uid value is mapped to the federated repositories
principalName property. If you define multiple login properties, after
login, the first login property is returned as the value of the principalName
property. For example, if you pass
joe@yourco.com as the principalName value and the login properties are configured
as uid;mail, the principalName is returned as joe.
sptcfg