Forum Discussion
Multiple AD Authentication
- Sep 30, 2022
I'm guessing on the User Directory dropdown, you don't see "Remote - APM Based"? I believe you need APM (Limited Mode) provisioned to unlock that. Keep in mind that provisioning may require a short change window.
Hey HerrDrachen can you clarify if you're referring to an APM access scenario or device management access?
- HerrDrachenSep 30, 2022Altocumulus
This is in relation to device management access. We are made up of 6 organizations using 6 different AD domains but all in the same forest. I created partitions in the tenant for each of them and I would like them to be managers of their own partitions. The domain listed in the device for LDAP purposes is xyz.com, so users in 123.com, abc.com, etc are not showing up even though we have a two-way trust between xyz.com and all of the others. In some of the other tools we use, AD either understands the trust and they just login with the normal domain credentials or we have to add each AD domain in individually.
- buulamSep 30, 2022Admin
Ok thanks for that detail. If you go into Authentication and configure User Directory, you should see Remote APM-Based as an option there. From there, you should be able to select Active Directory and it's similar to setting up an APM policy and you should have an option to enable Cross-domain support from there. Let me know if you see those options?
- HerrDrachenSep 30, 2022Altocumulus
This is what I see when I go into System | Users | Authentication. Remote Directory Tree is just a blank field.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com