Prior to NSX-T Data Center 3.1.2, if LDAP has not been configured correctly on NSX-T and user@example.net attempts to login as user@example.com, then the login will authenticate but after 5 minutes the user will be automatically logged out.
On NSX-T 3.1.2 and above, NSX-T behavior was changed to prevent such a login when the alternate domain name had not been configured correctly.