Quick Delivery Task or Managed Delivery policy custom account name is limited to 20 characters
Article ID: 400397
Updated On:
Products
IT Management Suite
Software Management Solution
Issue/Introduction
You have noticed that when running Quick Delivery tasks or Managed Delivery policies with "run as specific user" on Entra devices, like "AzureAD\name@domain" for example, the username field is capped at 20 characters.
This is NOT an issue for scripts tasks, they can have as many characters as you want. It is only an issue with Quick Delivery Tasks or Managed Delivery policies.
Environment
ITMS 8.7.3, 8.8
Cause
Known issue.
Resolution
This issue has been addressed with our ITMS 8.8.1 Release. See ITMS 8.8.1 Release Notes
There is a workaround available for those prior to ITMS 8.8.1:
- Domain and user name MUST be specified separately in the Quick Delivery UI
- For "Domain" field - use azuread (Domain is always azuread)
- For "User name" field - use the name of the Windows user account created for the desired AzureAD user
- Azure username may be specified in 2 ways:
-
- As Azure AD email
- As Windows account created on window machine. Typically that would be tokens concatenation from the Azure Account Display Name ( johnsmith for John Smith) and truncation of the result to 20 symbols.
Thus, in ITMS 8.8 both Quick Delivery task and Managed Delivery policy may specify 'Run As' user in the following way - even with 20-symbols limitation:
Additional info for the workaround:
- If you need azure user X context on machine while X has never logged on to machine (machine should be in the list of devices of azure tenant) , then username should be specified as a concatenation of Display Name pieces (truncated to 20 symbols).
- If In azure user's display name is John Smith The 4th, then username field should be johnsmiththe4th
Note: It is quite alright to use email as username as long as its length is not longer than 20 symbols.
Feedback
Yes
No
Powered by
