Understanding cross-domain support

Question

I just read in the F5 documentation the following ...
Cross-domain support and split domain from username are both enabled.If you enable cross domain support, and enable split domain username at the login page, and then the user enters his user name, such as user@domain.com, Access Policy Manager uses the user@domain.com as the user principal name to authenticate the user against USERNAME.COM domain.&nbsp;
Does this mean that my AD domain defined in the AAA server is irrelevant?&nbsp;

arnaud_lemaire · Answer

No it is still relevant, imagine a use case where you have have multiple domains with trust relationships. You authenticate to a domain as per the AAA config, but your user belongs to another one.

Forum Discussion

Understanding cross-domain support

1 Reply

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

Understanding iApps

Understanding Modern Application Architecture - Part 2

Understanding Modern Application Architecture - Part 3

Understanding HTTP/2 Activation Modes on BIG-IP

TMOS v17 support policy