Hi,
Could you please test it with the recent version of Keycloak? Since 3.x, quite a lot has
been done on user federation in general and LDAP in particular.
Cheers,
Dmitry Telegin
CTO, Acutus s.r.o.
Keycloak Consulting and Training
Pod lipami street 339/52, 130 00 Prague 3, Czech Republic
+42 (022) 888-30-71
E-mail: info(a)acutus.pro
On Mon, 2018-10-29 at 07:37 -0700, arbiterfwhim wrote:
Luiz Carlos wrote
> I'm trying to sync the LDAP groups into Keycloak but it doesn't update the
> membership if I add or remove it from a group in LDAP.
> --
> Luiz Carlos
> _______________________________________________
> keycloak-user mailing list
> keycloak-user@.jboss
>
https://lists.jboss.org/mailman/listinfo/keycloak-user
Bumping this. I'm currently using Keycloak 3.2.1 and am having similar
issues with LDAP syncing. My main issue is that when a user is granted a new
role on the LDAP side, that user (on the Keycloak side) doesn't get updated
to have that role when running a full sync (manual or scheduled).
In order to sync these changes I have to delete the user(s) and then run an
LDAP sync. This re-adds the user(s), this time with their latest set of
roles. Unfortunately I haven't found any settings in the Keycloak admin
console that can fix this. A solution would be greatly appreciated.
- Whim
--
Sent from:
http://keycloak-user.88327.x6.nabble.com/
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user