[keycloak-user] Handling disabled users from LDAP
Marek Posolda
mposolda at redhat.com
Tue Apr 10 10:42:13 EDT 2018
I think you would either need to use User Attribute LDAP Mapper, but not
sure if it's possible. I am not 100% sure about your LDAP structure. Or
you need to implement custom LDAP Storage mapper then.
Marek
Dne 10.4.2018 v 15:30 Dockendorf, Trey napsal(a):
> We are on Keycloak 3.4.2 using OpenLDAP 2.4.40. We have implemented ppolicy overlay on the server side to deny authenticated binds when someone's password has expired but we have custom attributes like loginDisabled that also dictates if someone should be granted access.
>
> Thanks,
> - Trey
>
More information about the keycloak-user
mailing list