1:50 p.m.
Hello guys,,
Our LDAP environment have a schema which required sn and cn to be stated
when creating a new user, therefore the User Registration in the KC will
not work as the KC can only use UID as the main attribute to register a new
user,
I'm thinking if anyone able to work this around by changing the UID to
another attribute?
Kind Regards
2:51 a.m.
If you go to "Mappers" tab of your LDAP Federation Provider and go to
UserAttributes mappers for "firstName" and "lastName" and change
switch
"Is Mandatory In LDAP" to On, then Keycloak will send some "temporary"
values (Just space by default) for CN and SN during user registration.
Those are then changed to real firstName and lastName of user in next
request (assuming firstName and lastName are provided). You can enable
TRACE logging for LDAP in standalone.xml (Category
org.keycloak.storage.ldap) to see the requests to LDAP and when they pass.
Marek
On 31/01/18 20:50, Min Han Lee wrote:
Hello guys,,
Our LDAP environment have a schema which required sn and cn to be stated
when creating a new user, therefore the User Registration in the KC will
not work as the KC can only use UID as the main attribute to register a new
user,
I'm thinking if anyone able to work this around by changing the UID to
another attribute?
Kind Regards
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
2521
days inactive
2522
days old
1 comments
2 participants
participants (2)
-
Marek Posolda -
Min Han Lee