31-Mar-2023 07:59
I'm not usually the person that sets up the AD integration on our hosts. The person that normally configures it took one look at the new F5OS (1.4) and, well, I won't repeat their comment here. I figured how hard can it be. I think I'm reasonably smart and can follow instructions. I used to think I was resonably smart. Now I'm not so sure. I've configured authentication settings and server groups. Users is still only an option for local.
03-Apr-2023 16:06
Hi @Leav97 - can you please give more detail around your experience or problems you came across? I'm not seeing a question to answer, or specific feedback I can bring to the product team.
04-Apr-2023 08:59
Sure,
How do I add an AD group for admin access?
04-Apr-2023 11:20
@Leav97 have a look at the following links they may give some more details you are looking for:
04-Apr-2023 11:46
I've walked through the documentation several times. I have yet to find any information on how to add an AD group to admin access.
04-Apr-2023 12:46
@Leav97 I am far from an Active Directory expert, but my understanding is that you have to have an AD group created with a GroupID of 9000 for F5OS admin users. Something like this inside AD:
# Define some security groups
new
-adgroup
-name
"f5os_admins"
-GroupCategory
Security
-GroupScope
Global
-OtherAttributes
@{
'gidNumber'
=9000}
new
-adgroup
-name
"f5os_operators"
-GroupCategory
Security
-GroupScope
Global
-OtherAttributes
@{
'gidNumber'
=9001}
new
-adgroup
-name
"f5os_users"
-GroupCategory
Security
-GroupScope
Global
-OtherAttributes
@{
'gidNumber'
=9002}
new
-adgroup
-name
"f5os_limited"
-GroupCategory
Security
-GroupScope
Global
-OtherAttributes
@{
'gidNumber'
=9999}