
<html>

  <head>

    <meta content="text/html; charset=UTF-8" http-equiv="Content-Type">

  </head>

  <body bgcolor="#FFFFFF" text="#000000">

    <div class="moz-cite-prefix">Hi,<br>

      <br>

      ATM There is fix in latest Keycloak master . Among other

      improvements, you can now configure in admin console the name of

      LDAP attribute, which is used as username in Keycloak. So for AD,

      you can select "sAMAccountName" . I believe that this will help to

      have things working in your environment. Please let me know if it

      helps.<br>

      <br>

      Thanks,<br>

      Marek<br>

      <br>

      On 20.6.2014 17:40, Dean Peterson wrote:<br>

    </div>

    <blockquote

cite="mid:CAFGzvPnKeZT50OAgfXf_pE5C+5sgM6Ggf6SBxooBhR_2iXo7OQ@mail.gmail.com"

      type="cite">

      <div dir="ltr">That sounds great, thanks!</div>

      <div class="gmail_extra"><br>

        <br>

        <div class="gmail_quote">On Fri, Jun 20, 2014 at 12:35 AM, Marek

          Posolda <span dir="ltr">&lt;<a moz-do-not-send="true"

              href="mailto:mposolda@redhat.com" target="_blank">mposolda@redhat.com</a>&gt;</span>

          wrote:<br>

          <blockquote class="gmail_quote" style="margin:0 0 0

            .8ex;border-left:1px #ccc solid;padding-left:1ex">

            <div bgcolor="#FFFFFF" text="#000000">

              <div>We already seem to have other person with very

                similar usecase like you. I am working on it and will

                let you know.<br>

                <br>

                Marek

                <div class=""><br>

                  <br>

                  On 19.6.2014 20:29, Dean Peterson wrote:<br>

                </div>

              </div>

              <blockquote type="cite">

                <div class="">

                  <div dir="ltr">Hello,  

                    <div><br>

                    </div>

                    <div>I am trying to get ldap to work and it seems

                      the query in picketlink's LDAPIdentityStore.java

                      on line 186 uses id or uid to find the user in an

                      Active Directory.  Our Active Directory stores the

                      username as the property sAMAccountName.  I

                      believe this prevents keycloak's new ldap

                      integration from working.  Am I missing something?</div>

                  </div>

                  <br>

                  <fieldset></fieldset>

                  <br>

                </div>

                <pre>_______________________________________________

keycloak-user mailing list

<a moz-do-not-send="true" href="mailto:keycloak-user@lists.jboss.org" target="_blank">keycloak-user@lists.jboss.org</a>

<a moz-do-not-send="true" href="https://lists.jboss.org/mailman/listinfo/keycloak-user" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a></pre>

              </blockquote>

              <br>

            </div>

          </blockquote>

        </div>

        <br>

      </div>

    </blockquote>

    <br>

  </body>

</html>