[keycloak-user] Problems when changing ID of a federated LDAP user.

Marek Posolda mposolda at redhat.com
Tue Oct 27 02:47:50 EDT 2015

Hi Kevin,

I've created https://issues.jboss.org/browse/KEYCLOAK-2022 for add admin 
events to sync. This will help to track how many errors happened during 
periodic sync etc.


On 26/10/15 17:29, Kevin Thorpe wrote:
> We changed the uid of an LDAP user to bring it into line with our 
> policy on user
> ids. This has broken the federation because of the id change. I'm not 
> sure how
> to work round this but can we at least have some form of notification 
> outside of
> the application logs?
> Message in logs:
> 10/26/2015 4:20:30 PM[0m [31m16:20:30,439 ERROR 
> [org.keycloak.federation.ldap.LDAPFederationProviderFactory] (default 
> task-45) Failed during import user from LDAP: 
> org.keycloak.models.ModelDuplicateException: Can't import user 
> 'will.cross' from LDAP because email 'will at pibenchmark.com 
> <mailto:will at pibenchmark.com>' already exists in Keycloak. Existing 
> user with this email is 'will_cross'
> *Kevin Thorpe
> *
> www.p-i.net <http://www.p-i.net/> | @PI_150 <https://twitter.com/@PI_150>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20151027/cf6ecfd1/attachment.html 

More information about the keycloak-user mailing list