Hi All,

keycloak does not pass an empty password to the validCredentials method in the UserFederationProvider class.

Is there a reason for that? I would like to authenticate against an AD even if the password is empty, otherwise the user won't be blocked after x attempts.

Michael