Discontinuation of multiple authentication methods per user

Currently, DRACOON supports the ability to enable multiple authentication methods (email login, Active Directory, RADIUS, and OpenID Connect) for a single user who can then choose to authenticate with any of the methods. This option is no longer supported and will be removed in the near future.

What's the meaning of this change?

In the future, a single authentication method will be assigned to each user. Different users of a DRACOON may still have different authentication methods. For example, both users with local accounts (login with an email address) and those who log on via an Active Directory can exist simultaneously.

Why is this feature no longer supported?

The current option offers hardly any added value and has therefore only been used by very few of our customers. At the same time, it increases the complexity of our system enormously and requires a high degree of care when selecting the correct authentication method at login. This has reduced the user-friendliness of DRACOON significantly and caused irritations and usage problems for many users.

Am I affected?

If any users in your environment are configured to be able to use more than one authentication method for login, those users will be affected by our change.

Which actions do I have to take?

Please check whether the users with more than one assigned authentication method are actually needed. If this is the case, we recommend splitting the user accounts into two or more accounts and authorizing them accordingly by assigning a different authentication method to each account.

How can I get help or support?

If you have further questions on this topic or need help with the required changes, please contact our support team.