diff --git a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/base/ModeledDirectoryObjectMapper.java b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/base/ModeledDirectoryObjectMapper.java
index 8ff0cc1c7f..5ff8edf156 100644
--- a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/base/ModeledDirectoryObjectMapper.java
+++ b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/base/ModeledDirectoryObjectMapper.java
@@ -76,11 +76,16 @@ Set<String> selectReadableIdentifiers(@Param("user") UserModel user,
      *
      * @param identifiers
      *     The identifiers of the objects to return.
+     * 
+     * @param caseSensitive
+     *     true if the query should evaluate identifiers in a case-sensitive
+     *     manner, otherwise false.
      *
      * @return 
      *     A Collection of all objects having the given identifiers.
      */
-    Collection<ModelType> select(@Param("identifiers") Collection<String> identifiers);
+    Collection<ModelType> select(@Param("identifiers") Collection<String> identifiers,
+                                 @Param("caseSensitive") boolean caseSensitive);
 
     /**
      * Selects all objects which have the given identifiers and are explicitly
@@ -99,13 +104,18 @@ Set<String> selectReadableIdentifiers(@Param("user") UserModel user,
      * @param effectiveGroups
      *     The identifiers of any known effective groups that should be taken
      *     into account, such as those defined externally to the database.
+     * 
+     * @param caseSensitive
+     *     true if the query should evaluate identifiers in a case-sensitive
+     *     manner, otherwise false.
      *
      * @return 
      *     A Collection of all objects having the given identifiers.
      */
     Collection<ModelType> selectReadable(@Param("user") UserModel user,
             @Param("identifiers") Collection<String> identifiers,
-            @Param("effectiveGroups") Collection<String> effectiveGroups);
+            @Param("effectiveGroups") Collection<String> effectiveGroups,
+            @Param("caseSensitive") boolean caseSensitive);
 
     /**
      * Inserts the given object into the database. If the object already
@@ -125,11 +135,16 @@ Collection<ModelType> selectReadable(@Param("user") UserModel user,
      *
      * @param identifier
      *     The identifier of the object to delete.
+     * 
+     * @param caseSensitive
+     *     true if the query should evaluate the identifier in a
+     *     case-sensitive manner, otherwise false.
      *
      * @return
      *     The number of rows deleted.
      */
-    int delete(@Param("identifier") String identifier);
+    int delete(@Param("identifier") String identifier,
+               @Param("caseSensitive") boolean caseSensitive);
 
     /**
      * Updates the given existing object in the database. If the object does 
diff --git a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/base/ModeledDirectoryObjectService.java b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/base/ModeledDirectoryObjectService.java
index fe587160dc..e7e04e5e71 100644
--- a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/base/ModeledDirectoryObjectService.java
+++ b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/base/ModeledDirectoryObjectService.java
@@ -115,7 +115,25 @@ public abstract class ModeledDirectoryObjectService<InternalType extends Modeled
      */
     protected abstract InternalType getObjectInstance(ModeledAuthenticatedUser currentUser,
             ModelType model) throws GuacamoleException;
-
+    
+    /**
+     * Returns whether or not identifiers for objects provided by this service
+     * are handled in a case-sensitive manner or not.
+     * 
+     * @return
+     *     "true" if identifiers handled by this object service should be
+     *     treated as case-sensitive, otherwise false.
+     * 
+     * @throws GuacamoleException 
+     *     If an error occurs retrieving relevant configuration information.
+     */
+    protected boolean getCaseSensitiveIdentifiers() throws GuacamoleException {
+        
+        // By default identifiers are not case-sensitive.
+        return false;
+        
+    }
+    
     /**
      * Returns an instance of a model object which is based on the given
      * object.
@@ -407,6 +425,8 @@ public Collection<InternalType> retrieveObjects(ModeledAuthenticatedUser user,
         int batchSize = environment.getBatchSize();
 
         boolean userIsPrivileged = user.isPrivileged();
+        
+        boolean caseSensitive = getCaseSensitiveIdentifiers();
 
         // Process the filteredIdentifiers in batches using Lists.partition() and flatMap
         Collection<ModelType> allObjects = Lists.partition(filteredIdentifiers, batchSize).stream()
@@ -415,12 +435,12 @@ public Collection<InternalType> retrieveObjects(ModeledAuthenticatedUser user,
 
                     // Bypass permission checks if the user is privileged
                     if (userIsPrivileged)
-                        objects = getObjectMapper().select(chunk);
+                        objects = getObjectMapper().select(chunk, caseSensitive);
 
                     // Otherwise only return explicitly readable identifiers
                     else
                         objects = getObjectMapper().selectReadable(user.getUser().getModel(),
-                                chunk, user.getEffectiveUserGroups());
+                                chunk, user.getEffectiveUserGroups(), caseSensitive);
 
                     return objects.stream();
                 })
@@ -510,7 +530,7 @@ public void deleteObject(ModeledAuthenticatedUser user, String identifier)
         beforeDelete(user, identifier);
         
         // Delete object
-        getObjectMapper().delete(identifier);
+        getObjectMapper().delete(identifier, getCaseSensitiveIdentifiers());
 
     }
 
diff --git a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/tunnel/AbstractGuacamoleTunnelService.java b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/tunnel/AbstractGuacamoleTunnelService.java
index e0a6091b07..2dcd168b91 100644
--- a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/tunnel/AbstractGuacamoleTunnelService.java
+++ b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/tunnel/AbstractGuacamoleTunnelService.java
@@ -638,7 +638,7 @@ private List<ModeledConnection> getBalancedConnections(ModeledAuthenticatedUser
             identifiers = getPreferredConnections(user, identifiers);
 
         // Retrieve all children
-        Collection<ConnectionModel> models = connectionMapper.select(identifiers);
+        Collection<ConnectionModel> models = connectionMapper.select(identifiers, false);
         List<ModeledConnection> connections = new ArrayList<ModeledConnection>(models.size());
 
         // Convert each retrieved model to a modeled connection
@@ -679,7 +679,7 @@ public Collection<ActiveConnectionRecord> getActiveConnections(ModeledAuthentica
         // Produce collection of readable connection identifiers
         Collection<ConnectionModel> connections =
                 connectionMapper.selectReadable(user.getUser().getModel(),
-                        identifiers, user.getEffectiveUserGroups());
+                        identifiers, user.getEffectiveUserGroups(), false);
 
         // Ensure set contains only identifiers of readable connections
         identifiers.clear();
diff --git a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserMapper.java b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserMapper.java
index 243618c2b0..f9e63a6e55 100644
--- a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserMapper.java
+++ b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserMapper.java
@@ -19,7 +19,6 @@
 
 package org.apache.guacamole.auth.jdbc.user;
 
-import java.util.Collection;
 import org.apache.guacamole.auth.jdbc.base.ModeledDirectoryObjectMapper;
 import org.apache.ibatis.annotations.Param;
 
@@ -36,7 +35,7 @@ public interface UserMapper extends ModeledDirectoryObjectMapper<UserModel> {
      *     The username of the user to return.
      * 
      * @param caseSensitive
-     *     true if the search should evaluate usernames in a case-sensitive
+     *     true if the search should evaluate the username in a case-sensitive
      *     manner, otherwise false.
      *
      * @return
@@ -44,72 +43,5 @@ public interface UserMapper extends ModeledDirectoryObjectMapper<UserModel> {
      */
     UserModel selectOne(@Param("username") String username,
                         @Param("caseSensitive") boolean caseSensitive);
-    
-    /**
-     * Selects all users which have the given identifiers. If an identifier
-     * has no corresponding object, it will be ignored. This should only be
-     * called on behalf of a system administrator. If users are needed by a
-     * non-administrative user who must have explicit read rights, use
-     * selectReadable() instead.
-     *
-     * @param identifiers
-     *     The identifiers of the users to return.
-     * 
-     * @param caseSensitive
-     *     true if the query should evaluate username identifiers in a
-     *     case-sensitive manner, otherwise false.
-     *
-     * @return 
-     *     A Collection of all objects having the given identifiers.
-     */
-    Collection<UserModel> select(@Param("identifiers") Collection<String> identifiers,
-                                 @Param("caseSensitive") boolean caseSensitive);
-    
-    /**
-     * Selects all users which have the given identifiers and are explicitly
-     * readable by the given user. If an identifier has no corresponding
-     * object, or the corresponding user is unreadable, it will be ignored.
-     * If users are needed by a system administrator (who, by definition,
-     * does not need explicit read rights), use select() instead.
-     *
-     * @param user
-     *    The user whose permissions should determine whether an object 
-     *    is returned.
-     *
-     * @param identifiers
-     *     The identifiers of the users to return.
-     *
-     * @param effectiveGroups
-     *     The identifiers of any known effective groups that should be taken
-     *     into account, such as those defined externally to the database.
-     * 
-     * @param caseSensitive
-     *     true if the query should evaluate username identifiers in a
-     *     case-sensitive manner, otherwise false.
-     *
-     * @return 
-     *     A Collection of all objects having the given identifiers.
-     */
-    Collection<UserModel> selectReadable(@Param("user") UserModel user,
-            @Param("identifiers") Collection<String> identifiers,
-            @Param("effectiveGroups") Collection<String> effectiveGroups,
-            @Param("caseSensitive") boolean caseSensitive);
-    
-    /**
-     * Deletes the given user from the database. If the user does not 
-     * exist, this operation has no effect.
-     *
-     * @param identifier
-     *     The identifier of the user to delete.
-     * 
-     * @param caseSensitive
-     *     true if the query should evaluate username identifiers in a
-     *     case-sensitive manner, otherwise false.
-     *
-     * @return
-     *     The number of rows deleted.
-     */
-    int delete(@Param("identifier") String identifier,
-            @Param("caseSensitive") boolean caseSensitive);
 
 }
diff --git a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserService.java b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserService.java
index 9478fd3719..686486a85a 100644
--- a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserService.java
+++ b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserService.java
@@ -217,6 +217,11 @@ protected UserModel getModelInstance(ModeledAuthenticatedUser currentUser,
         return model;
         
     }
+    
+    @Override
+    protected boolean getCaseSensitiveIdentifiers() throws GuacamoleException {
+        return environment.getCaseSensitiveUsernames();
+    }
 
     @Override
     protected boolean hasCreatePermission(ModeledAuthenticatedUser user)