LAG Identity Injection policy truncates user CN if it inlcudes a comma and the authentication contract is kerberos

  • 7006962
  • 30-Sep-2010
  • 26-Apr-2012


Novell Access Manager 3.1
Novell Access Manager 3.1.2
Novell Access Manager 3.1 Linux Access Gateway


  • A protected resource has been configured for a kerberos authentication contract
  • An Access Gateway Identity Injection policy has been configured to retrieve the username and password from the credential profile in order to inject this into a HTTP Basic Authorization Header (Do Inject into Authentication Header)
  • A Microsoft Active Directory userstore has been configured
  • user objects store user names including a comma (Name, Surname).


This issue has been fixed with Novell Access Manager Service Pack 2 Interim Release 2 (SP2IR2)