AD servers allow users to login w/o a DN by allowing them to specify just the username instead. This is not standards compliant but some clients (appliances) seem to like to use this method.
For this patch to work this ticket in 389ds needs to be fixed first:
note that Ad accepts only fully qualified names like: NETBIOS\Username, we should probably do the same
Metadata Update from @simo:
- Issue assigned to someone
- Issue set to the milestone: FreeIPA 4.5 backlog
to comment on this ticket.