Re: [keycloak-user] Exclude a user with realm-management role from keycloak's password policy

Hi, You could create a new user in the master realm and assign the Realm management roles for the specific realm using the Role Mappings tab -> Client Role . In order to manage the other realm, get the token for the newly created user from the master realm and then send that token in your API calls. The ability to assign realm management for other realms is only available for users in the master realm. Hope this helps. Sent from Mail<https://go.microsoft.com/fwlink/?LinkId=550986> for Windows 10 ________________________________ From: keycloak-user-bounces(a)lists.jboss.org <keycloak-user-bounces(a)lists.jboss.org&gt; on behalf of Fateh <fateh.alchhabi(a)gmail.com&gt; Sent: Friday, March 15, 2019 6:25:25 PM To: keycloak-user(a)lists.jboss.org Subject: [keycloak-user] Exclude a user with realm-management role from keycloak's password policy Problem: I have a user with Client Roles realm-management in a realm called xx which contains password policy. I want to exclude this user from the password policy since this user responsible to fetch the roles, users and do some updates via Java API and I don't want all the operation to stop until we update the user password when the password policy triggered Ps. I tried to use the admin user from the master realms I could n't get data out of the master realm I would appreciate any Help or ideas? -- Sent from: http://keycloak-user.88327.x6.nabble.com/ _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org https://lists.jboss.org/mailman/listinfo/keycloak-user