In JIMS, you can create an alias for the JIMS Active Directory domain names. Domain aliases enable you to assign different domain names to your primary domain name.
Domain Alias Overview
An Active Directory forest is the top most logical container in JIMS Active Directory configuration that contains domains, users, and group policies. The domain name is the string appended to hostnames that are not fully qualified. The domain name is the name of a network associated with an organization. For sites in the United States, domain names typically take the form of org-name.org-type. JIMS creates a domain object for each Active Directory forest it connects. The domain object maintains a list of outstanding devices and users.
JIMS maps the domain names to the domain object by mapping the long name (juniper.net) and the short name (juniper) to reference the same domain object.
User Principal Name (UPN) is the name of a user in an e-mail address format. The UPN format is based on Internet RFC 822: Standard for the Format of ARPA Internet Text Messages. In the e-mail address, the UPN is the user account name (UPN prefix) followed by the @ (at sign) and by the DNS domain name (UPN suffix) with which the user is associated. UPN is used to log on to a domain network. The UPN suffix can be the DNS name of any domain in the Active Directory forest or it can be an alternative domain name. The alternative domain name need not be a valid DNS name.
By using the domain aliases, JIMS adds the UPN suffixes as entries to the map.
Eliminates the need to manage multiple addresses for a single user using domain alias.
Configure Domain Aliases
Before you begin, you need to configure the connection to an Active Directory. To configure the connection to an Active Directory, see Configuring the Connection to an Active Directory.
To configure domain aliases:
In the navigation pane, select Data Sources and then select the Info Sources tab.
In the upper Active Directory Sources pane, hold down the control key and click Add. The Add Active Directory Configuration page appears.
Click the Advanced button. The Add Advanced Active Directory Configuration page appears.
Click Add button. The Domain Alias page appears. Enter a domain alias to associate with the Active Directory server. A domain alias refers to the domain name of the Active Directory.
You can edit or delete the added domain alias, as required, using the Edit or Delete buttons, respectively, on the Add Active Directory Configuration page.
Restart the JIMS server when domain aliases are added or removed. Failure to do so can lead to inconsistent reports to the SRX Series devices.
Select the Enable check box to enable the forced domain aliases. Forced domain aliases are the other domain aliases that are not in the list of the domain object.
Select the Disable UPN suffix aliasing check box to disable the UPN suffix alias.
We recommend that you do not o disable UPN suffix alias. Disabling the UPN suffix alias causes the JIMS server to ignore the UPN suffix list from the Active Directory while utilizing the additional aliases.
If you select the Disable UPN suffix aliasing check box, you can continue to use the force list.
Click OK to save the settings. The modified Active Directory configuration appears in the configured list.
If you modify the domain alias configuration and click OK, because of the changes made to the Active Directory configuration, the domain alias portion of the template is merged into the Active Directory configuration. Any subsequent changes to the template does not affect the domain alias configuration.
After making modifications, if you want to revert the domain alias configuration back to the template, uncheck the Enable check box and click OK. JIMS reverts the Domain Alias configuration back to the entries from the template.