auth apm-auth
auth apm-auth(1) BIG-IP TMSH Manual auth apm-auth(1)
NAME
apm-auth - Configures an APM-based authentication object for implementing access policy execution-based
authentication of BIG-IP(r) system users.
MODULE
auth
SYNTAX
Configure the apm-auth component within the auth module using the syntax shown in the following sections.
CREATE/MODIFY
create apm-auth [name]
modify apm-auth [name]
options:
profile-access [string]
edit apm-auth [ [ [name] | [glob] | [regex] ] ...]
options:
all-properties
non-default-properties
DISPLAY
list apm-auth
list apm-auth [ [ [name] | [glob] | [regex] ] ...]
show running-config apm-auth
show running-config apm-auth [ [ [name] | [glob] | [regex] ] ...]
options:
all-properties
non-default-properties
one-line
partition
DELETE
delete apm-auth [name]
DESCRIPTION
You can configure APM-based authentication to execute an access policy for BIG-IP system users to authenticate
and authorize them.
APM authentication methods like HTTP, AD/LDAP, TACACS+ authentication can be used in box authentication To
authenticate BIG-IP system users.To do this, create an access profile, create APM configuration object with
the above access profile, and then activate the object.
The following steps describe how to configure APM-based authentication for BIG-IP system users:
1. Use the profile-access component in the apm module to create a access profile.
2. Use the apm-auth component in the auth module to map an access profile to an APM-based authentication
object.
3. To activate APM-based authentication for BIG-IP system users, run the command sequence modify / auth source
type apm-auth
EXAMPLES
create apm-auth system-auth {profile-access apm-profile}
Creates an APM-based authentication object named system-auth
delete apm-auth system-auth
Deletes the APM-based authentication object named system-auth.
OPTIONS
description
User-defined description.
glob Displays the items that match the glob expression. See help glob for a description of glob expression
syntax.
name Specifies a unique name for the component. This option is required for the commands create and modify.
partition
Displays the administrative partition within which the component resides.
profile-access
Specifies the access profile that the system must use for APM-based authentication. You must specify an
access profile when you create an APM-based configuration object.
regex
Displays the items that match the regular expression. The regular expression must be preceded by an at
sign (@[regular expression]) to indicate that the identifier is a regular expression. See help regex for
a description of regular expression syntax.
SEE ALSO
auth user, create, delete, glob, list, modify, regex, run, show, tmsh
COPYRIGHT
No part of this program may be reproduced or transmitted in any form or by any means, electronic or
mechanical, including photocopying, recording, or information storage and retrieval systems, for any purpose
other than the purchaser's personal use, without the express written permission of F5 Networks, Inc.
F5 Networks and BIG-IP (c) Copyright 2008-2013. All rights reserved.
BIG-IP 2013-06-17 auth apm-auth(1)