apm aaa active-directory-trusted-domains
apm aaa active-directory-trustBIG-IapmMaaaMactive-directory-trusted-domains(1)
NAME
active-directory-trusted-domains - Manages authentication access policy
(AAA) Active Directory(r) Trusted Domains.
MODULE
apm aaa
SYNTAX
Configure the active-directory-trusted-domains component within the aaa
module using the syntax shown in the following sections.
CREATE/MODIFY
create active-directory-trusted-domains [name]
modify active-directory-trusted-domains [name]
options:
app-service [[string] | none]
description [[string] | none]
root-domain [string]
trusted-domains [add | delete | modify | replace-all-with] {
{
active-directory [name]
}
}
edit active-directory-trusted-domains [ [ [name] | [glob] | [regex] ] ... ]
options:
all-properties
non-default-properties
DISPLAY
list active-directory-trusted-domains
list active-directory-trusted-domains [ [ [name] | [glob] | [regex] ] ... ]
options:
all-properties
app-service
non-default-properties
one-line
partition
DELETE
delete active-directory-trusted-domains [name]
DESCRIPTION
You can use the active-directory-trusted-domains component to manage
AAA Active Directory Trusted Domains. You can use this object to
configure cross-domain authentication across a forest. It also allows
to configure Active Directory(r) agents to work in a Route Domains
environment.
EXAMPLES
create active-directory-trusted-domains MyTRD { trusted-domains {
myDomain1 myDomain2 myDomain3 } root-domain /Common/myDomain2 }
Creates an object named MyTRD, sets domains myDomain1, myDomain2,
myDomain3 as trusted and the root-domain is set to myDomain2. To
use this example you need to have Active Directory servers
myDomain1, myDomain2 and myDomain3 pre-configured.
delete active-directory MyTRD
Deletes the AAA Active Directory Trusted Domains named MyTRD from
the system.
OPTIONS
app-service
Specifies the name of the application service to which the object
belongs. The default value is none. Note: If the strict-updates
option is enabled on the application service that owns the object,
you cannot modify or delete the object. Only the application
service can modify or delete the object.
description
Specifies a user-defined description for the Active Directory
Trusted Domains.
root-domain
Specifies an entry point to an Active Directory forest. An
initial authentication request will always to be sent to root
domain first. This setting is required.
trusted-domains
Specifies a list of AAA Active Directory server components. Trust
relationships should be defined for domains you add into this
list. This setting is required.
SEE ALSO
active-directory
COPYRIGHT
No part of this program may be reproduced or transmitted in any form or
by any means, electronic or mechanical, including photocopying,
recording, or information storage and retrieval systems, for any
purpose other than the purchaser's personal use, without the express
written permission of F5 Networks, Inc.
F5 Networks and BIG-IP (c) Copyright 2011-2013, 2015. All rights
reserved.
BIG-IP 2apm-aaa0active-directory-trusted-domains(1)