Forum Discussion
NimbostratusAuthentication with Multiple Domains
Hello Guys,
If we have 2 domains (domain1.com) and (domain2.com) with their Active directories (AD1) and (AD2)
We need to authenticate the user first with domain1.com and if the user is not available in this domain (domain1.com), we should to check with other domain (domain2.com) for authentication.
Also in the same time , we would like to use SSO credential mapping for single sign on for both of domain authentication to avoid to submit the credentials again to the application
Can Anyone help to figure it ?
Note: We din't need to use drop down option for login page to choose the domain , we need the checking process happen by APM Agents to check that automatically without asking the user for his/her domain which he/she belongs
So we don't to follow the following suggestion as they don't achieve our requirements https://codygreen.com/2014/11/17/apm-cookbook-multiple-domain-authentication-part-2/ https://devcentral.f5.com/articles/apm-cookbook-multiple-domain-authentication-part-1
Hank_MoodyHey Mr Freddy,
did you tried to build an Access Policy with 2 Tracks?
You can create 2 Access profiles, and then build in one Policy, with two ways. There you can apply on the one way the Access Profile for AD1 and on the "cloned" 2nd string the Profile for AD2.
Access -> Authentication -> Active Directory -> Create
after creating both ADs
go to Access -> Profiles/Policies -> Access Profiles -> And build the Policy
Is this what you needed?