[keycloak-user] kcadm.sh - Updating existing LDAP confg.

Marko Strukelj marko.strukelj at gmail.com
Thu Mar 29 08:00:24 EDT 2018 

The easiest way is to perform this through Admin Consol with developer
tools turned on so that you can se what is sent over to Admin REST API.

It is then easy to do the same through kcadmin.sh.


On Thu, Mar 29, 2018 at 11:31 AM, Yavuz Selim Polat <yspolat at gmail.com>
wrote:

> Hi,
>
>
>
> In Keycloak- User Federation, I already configured a LDAP with below
> attributes. As an operation reason, we are developing a script to be able
> operate user (import,resync etc.) with LDAP integration.
>
>
>
> I found that AdminCLI documentation and on linux side we can perform some
> operation via “kcadm.sh”. My question is, how can I update yellow
> highlighted attributes (Users DN and Custom User LDAP Filter) for existing
> LDAP confg.?
>
>
>
> If I can update Users DN and add “tuser” to Custom User LDAP Filter
> attribute successfully via kcadm.sh. I will have a chance to do some user
> operations anyway, like I mentioned above, I just need to update current
> LDAP configuration. I couldn’t find in AdminCLI doc for updating operation.
>
>
>
> If you know, please share me J
>
>
> Regards
>
>
>
> Console Display Name  - ldap
>
> Priority  - 0
>
> Import Users - On
>
> Edit Mode - READ_ONLY
>
> Sync Registrations - On
>
> Vendor - On
>
> Username LDAP attribute - uid
>
> RDN LDAP attribute - uid
>
> UUID LDAP attribute - uid
>
> User Object Classes - inetOrgPerson, organizationalPerson
>
> Connection URL - ldap://ldap:3333
>
> Users DN - dc=entp,dc=abc
>
> Authentication Type - single
>
> Bind Credential – N/A
>
> Custom User LDAP Filter - (uid=user)
> Search Scope - Subtree
>
> Use Truststore SPI - Only for ldaps
>
> Connection Pooling - Off
>
> Connection Timeout - <Blank>
>
> Read Timeout - 600000
>
> Pagination - Off
>
> Allow Kerberos authentication - Off
>
> Use Kerberos For Password Authentication - Off
>
> Batch Size  - 1000
>
> Periodic Full Sync - Off
>
> Periodic Changed Users Sync - Off
>
> Cache Policy  - DEFAULT
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user

More information about the keycloak-user mailing list