APM AD Auth and Trusted Domains

Question

Hi there,&nbsp;
I have a domain trust between acme.com and contoso.com.  The APM lives in the acme.com and can authenticate users against this domain using AD Auth.  With the trust in place I want to allow users in the contoso domain to authenticate through the APM.&nbsp;
AAA AD server is configured for acme.com
AAA AD Trusted Domain is configured for contoso.com with acme.com AAA selected and configured as the Root.&nbsp;
In the VPE the AD Auth is pointing to acme.com with cross domain support enabled.  The trusted domains is grayed out.&nbsp;
What am I missing?&nbsp;

kevin_stewart · Answer

I'm guessing the Trusted Domains options is greyed out because you've selected a AAA server in the AD auth config. You can use one or the other.&nbsp;

rene_bader_1308 · Answer

Mark,&nbsp;
Your settings in VPE for AD Auth should be:&nbsp;
Server: None&nbsp;
Trusted Domains: &nbsp;
Cross Domain Support: Enabled&nbsp;
With a configured Server you cannot set the domain trust, just switch it back to None and the Trust should be selectable.  &nbsp;
Best&nbsp;
René&nbsp;

Forum Discussion

APM AD Auth and Trusted Domains

2 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

F5OS login with admin/root failed via console

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

UCS Encryption Question

Unblock Request WAF

Related Content

Zero Trust Application Access for Federal Agencies

Creating device trust / trust-domain through iControl REST Call(s)

F5 BIG-IP Zero Trust with BIG-IP SSL Orchestrator

Trust your CDN, but not completely

Error While Adding Peer Devices to Local Trust Domain

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS