| addauthenticationnegotiateaction |
Use this method to creates an action (profile) for an Active Directory (AD) server that is used as a Kerberos Key Distribution Center (KDC). The profile contains all configuration data necessary to communicate with that AD KDC server. |
Syntax |
Parameters |
name |
Name for the AD KDC server profile (negotiate action).
Must begin with a letter, number, or the underscore character (_), and must contain only letters, numbers, and the hyphen (-), period (.) pound (#), space ( ), at (@), equals (=), colon (:), and underscore characters. Cannot be changed after AD KDC server profile is created.
The following requirement applies only to the Citrix ADC CLI:
If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my authentication action" or 'my authentication action'). This is mandatory parameter. |
domain |
Domain name of the service principal that represnts Citrix ADC. |
domainuser |
User name of the account that is mapped with Citrix ADC principal. This can be given along with domain and password when keytab file is not available. If username is given along with keytab file, then that keytab file will be searched for this user's credentials. |
domainuserpasswd |
Password of the account that is mapped to the Citrix ADC principal. |
defaultauthenticationgroup |
This is the default group that is chosen when the authentication succeeds in addition to extracted groups. |
keytab |
The path to the keytab file that is used to decrypt kerberos tickets presented to Citrix ADC. If keytab is not available, domain/username/password can be specified in the negotiate action configuration |
ntlmpath |
The path to the site that is enabled for NTLM authentication, including FQDN of the server. This is used when clients fallback to NTLM. |
Return Value |
Returns simpleResult |
See Also |