[keycloak-user] G Suite SSO incorrect redirect to admin.google.com
Amin Khoshnood
noodi.net at gmail.com
Wed Dec 19 04:52:28 EST 2018
I used Keycloak docker image <https://hub.docker.com/r/jboss/keycloak/tags>
(4.7.0.Final) with Mariadb.
Server Version: 4.7.0.Final
Java Version: 1.8.0_191
Java Vendor: Oracle Corporation
Java Runtime: OpenJDK Runtime Environment
Java VM Version: 25.191-b12
Java Home: /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.191.b12-0.el7_5.x86_64/jre
Operating System: Linux 4.15.0-42-generic
MariaDB:
docker run -d --name=mariadb --network=host -e MYSQL_ROOT_PASSWORD=password
-e MYSQL_DATABASE=keycloak -e MYSQL_USER=keycloak -e
MYSQL_PASSWORD=password mariadb
Keycloak with MariaDB:
docker run -d --name=keycloak --network=host -e KEYCLOAK_USER=admin -e
KEYCLOAK_PASSWORD=XXXX -e DB_VENDOR=mariadb -e DB_ADDR=127.0.0.1 -e
DB_PORT=3306 -e DB_DATABASE=keycloak -e DB_USER=keycloak -e
DB_PASSWORD=password jboss/keycloak
On Wed, Dec 19, 2018 at 1:07 PM Amin Khoshnood <noodi.net at gmail.com> wrote:
> Hello everybody,
> I configured Keycloak through this guide
> <https://stories.scandiweb.com/sign-in-to-google-apps-using-saml-protocol-and-keycloak-as-identity-provider-79227fd2e063>
> (
> https://stories.scandiweb.com/sign-in-to-google-apps-using-saml-protocol-and-keycloak-as-identity-provider-79227fd2e063)
> and it imports users from FreeIPA (LDAP).
>
> Right now when I login to G Suite through Keycloak (SAML), Google
> redirects me to admin.google.com (with regular user account) and I get
> the error 'admin.google.com is for G Suite accounts only. Regular Gmail
> accounts cannot be used to sign in to admin.google.com. Learn more'.
>
> Google support team answered:
> "We have noticed that during these last few days a significant number of
> cases have been created about this same matter and overall integration with
> KeyCloack SSO. We understand how important this configuration is or you and
> believe me that we have been working as fast as we can."
>
> You can check these video casts about the problem:
>
> MacOS and Chrome:
>
> https://drive.google.com/file/d/16o6B0hzPtiMHBuG9CCBxe860o8JAE8w7/view?usp=sharing
> MacOS:
>
> https://drive.google.com/file/d/1Rk2KbV9iMsdg2UQox8p4XKz4soO7Gcuy/view?usp=sharing
> iPhone video:
>
> https://drive.google.com/file/d/12-6iWuL5xx3i0keFA5aPXpN5ghjH0uAn/view?usp=sharing
>
> Do you have the same issue with G Suite SSO or any other services?
>
> Also please let me know if there are any problems with other SPs (service
> providers) like Microsoft 365?
>
> Best Regards.
> Amin Khoshnood.
>
More information about the keycloak-user
mailing list