apm aaa active-directory-trusted-domains

apm aaa active-directory-trustBIG-IapmMaaaMactive-directory-trusted-domains(1)



NAME
       active-directory-trusted-domains - Manages authentication access policy
       (AAA) Active Directory(r) Trusted Domains.

MODULE
       apm aaa

SYNTAX
       Configure the active-directory-trusted-domains component within the aaa
       module using the syntax shown in the following sections.

   CREATE/MODIFY
	create active-directory-trusted-domains [name]
	modify active-directory-trusted-domains [name]
	  options:
	    app-service [[string] | none]
	    description [[string] | none]
	    root-domain [string]
	    trusted-domains [add | delete | modify | replace-all-with] {
	       {
		 active-directory [name]
	       }
	    }

	edit active-directory-trusted-domains [ [ [name] | [glob] | [regex] ] ... ]
	  options:
	    all-properties
	    non-default-properties

   DISPLAY
	list active-directory-trusted-domains
	list active-directory-trusted-domains [ [ [name] | [glob] | [regex] ] ... ]
	  options:
	    all-properties
	    app-service
	    non-default-properties
	    one-line
	    partition

   DELETE
	delete active-directory-trusted-domains [name]

DESCRIPTION
       You can use the active-directory-trusted-domains component to manage
       AAA Active Directory Trusted Domains. You can use this object to
       configure cross-domain authentication across a forest. It also allows
       to configure Active Directory(r) agents to work in a Route Domains
       environment.

EXAMPLES
       create active-directory-trusted-domains MyTRD { trusted-domains {
       myDomain1 myDomain2 myDomain3 } root-domain /Common/myDomain2 }
	    Creates an object named MyTRD, sets domains myDomain1, myDomain2,
	    myDomain3 as trusted and the root-domain is set to myDomain2. To
	    use this example you need to have Active Directory servers
	    myDomain1, myDomain2 and myDomain3 pre-configured.

       delete active-directory MyTRD
	    Deletes the AAA Active Directory Trusted Domains named MyTRD from
	    the system.

OPTIONS
       app-service
	    Specifies the name of the application service to which the object
	    belongs. The default value is none. Note: If the strict-updates
	    option is enabled on the application service that owns the object,
	    you cannot modify or delete the object. Only the application
	    service can modify or delete the object.

       description
	    Specifies a user-defined description for the Active Directory
	    Trusted Domains.

       root-domain
	    Specifies an entry point to an Active Directory forest.  An
	    initial authentication request will always to be sent to root
	    domain first.  This setting is required.

       trusted-domains
	    Specifies a list of AAA Active Directory server components.  Trust
	    relationships should be defined for domains you add into this
	    list.  This setting is required.

SEE ALSO
       active-directory

COPYRIGHT
       No part of this program may be reproduced or transmitted in any form or
       by any means, electronic or mechanical, including photocopying,
       recording, or information storage and retrieval systems, for any
       purpose other than the purchaser's personal use, without the express
       written permission of F5 Networks, Inc.

       F5 Networks and BIG-IP (c) Copyright 2011-2013, 2015. All rights
       reserved.



BIG-IP				  2apm-aaa0active-directory-trusted-domains(1)