Hi Scott,
we havealmostthe same problem: We createdfor each Windows Active Directorydomainin our landscapeanauthenticationprofileandusedthe active directory domain nameinthe nameof the profile (for example "authentication profile - DOMAIN.CORP"). Thenwe distributedaregkeyvia logonscript that created an entryin the HKCU Windowsregistry:
[HKEY_CURRENT_USER\SOFTWARE\SAP\SecureLogin\applications\DEFAULT]
"GssTargetName"="*"
"profile"="authentication profile - %USERDNSDOMAIN%"
"allowFavorite"=dword:00000001
The environment variable %USERDNSDOMAIN% was "translated / interpreted" by the logon script. A possible solution would be: use a REG_EXPAND_SZ reg type instead. Only drawback is: a windows relogon / restart is needed.
Best regards
Kai