apm aaa active-directory-trusted-domains
apm aaa active-directory-trusted-domains(1) BIG-IP TMSH Manual apm aaa active-directory-trusted-domains(1)
NAME
active-directory-trusted-domains - Manages authentication access policy (AAA) Active Directory(r) Trusted
Domains.
MODULE
apm aaa
SYNTAX
Configure the active-directory-trusted-domains component within the aaa module using the syntax shown in the
following sections.
CREATE/MODIFY
create active-directory-trusted-domains [name]
modify active-directory-trusted-domains [name]
options:
app-service [[string] | none]
description [[string] | none]
root-domain [string]
trusted-domains [add | delete | modify | replace-all-with] {
{
active-directory [name]
}
}
edit active-directory-trusted-domains [ [ [name] | [glob] | [regex] ] ... ]
options:
all-properties
non-default-properties
DISPLAY
list active-directory-trusted-domains
list active-directory-trusted-domains [ [ [name] | [glob] | [regex] ] ... ]
options:
all-properties
app-service
non-default-properties
one-line
partition
DELETE
delete active-directory-trusted-domains [name]
DESCRIPTION
You can use the active-directory-trusted-domains component to manage AAA Active Directory Trusted Domains. You
can use this object to configure cross-domain authentication across a forest. It also allows to configure
Active Directory(r) agents to work in a Route Domains environment.
EXAMPLES
create active-directory-trusted-domains MyTRD { trusted-domains { myDomain1 myDomain2 myDomain3 } root-domain
/Common/myDomain2 }
Creates an object named MyTRD, sets domains myDomain1, myDomain2, myDomain3 as trusted and the root-
domain is set to myDomain2. To use this example you need to have Active Directory servers myDomain1,
myDomain2 and myDomain3 pre-configured.
delete active-directory MyTRD
Deletes the AAA Active Directory Trusted Domains named MyTRD from the system.
OPTIONS
app-service
Specifies the name of the application service to which the object belongs. The default value is none.
Note: If the strict-updates option is enabled on the application service that owns the object, you cannot
modify or delete the object. Only the application service can modify or delete the object.
description
Specifies a user-defined description for the Active Directory Trusted Domains.
root-domain
Specifies an entry point to an Active Directory forest. An initial authentication request will always to
be sent to root domain first. This setting is required.
trusted-domains
Specifies a list of AAA Active Directory server components. Trust relationships should be defined for
domains you add into this list. This setting is required.
SEE ALSO
active-directory
COPYRIGHT
No part of this program may be reproduced or transmitted in any form or by any means, electronic or
mechanical, including photocopying, recording, or information storage and retrieval systems, for any purpose
other than the purchaser's personal use, without the express written permission of F5 Networks, Inc.
F5 Networks and BIG-IP (c) Copyright 2011-2013, 2015. All rights reserved.
BIG-IP 2016-01-07 apm aaa active-directory-trusted-domains(1)