When users use a user name and password authentication method, you can enable the unique identifier option to display the identifier-based login pages. Users are asked to enter their unique identifier and then are asked to enter the appropriate authentication based on the configured access policy rules.

About this task

The authentication methods that support unique identifier-based log in include the Password authentication methods, RSA SecurID, and RADIUS.


  • Select the unique identifier user attribute to use in the I &M Access > User Attributes page. Make sure that attribute is used only to identify unique objects.

  • Make sure that the selected attributes sync to the directory.

  • Verify that the default access policy rules for the user domains reflect the type of authentication to use when identifier-based login is available.


  1. From the admin console Identity & Access Management tab, click Preferences.
  2. If you are setting up unique identifier-based login in a single domain environment, enable Show the System Domain on Login Page.

    Enabling this functionality is required only when one domain is configured in VMware Identity Manager.

  3. To hide the domain selection login page, select the Enable check box.
  4. Select the unique identifier to use from the drop-down menu. The options are username, email, UPN, or employee ID.
  5. Click Save.