Hi all,

I'm not entierly sure that it works this way but I think it something
like this
when a user is accessing access manager thru oauth (or a application is
doing that on the behalf of the user) it receives a sub id back with the
token. The sub id looks like its extracted from the AD sid of the user
that got authenticated.
A customer of mine has a application and the developer of that a app
wants to use oauth and the sub id to provision/connect the users in the
application with the ad users. Does anybody know if you are able to
retrieve the sub id before a user has logged in so you could to a pre
provisioning of the users based on sub id.


lelle's Profile: https://forums.netiq.com/member.php?userid=410
View this thread: https://forums.netiq.com/showthread.php?t=55835