[keycloak-user] kc2.4 - breaks PK idp brokering to adfs

java_os java at neposoft.com
Wed Dec 21 10:48:57 EST 2016


Hi,
In KC 2.3 I can establish trust with adfs by exporting kc meta and
importing into adfs.
With KC 2.4 - this breaks - I tried to re-gen the rsa key, export meta,
import into adfs - it fails on this adfs error:
"ID4037: The key needed to verify the signature could not be resolved from
the following security key identifier 'SecurityKeyIdentifier"

I'm seeing from UI perspective you've added stuff into around PK in 2.4 -
but behind the scenes something is breaks on the 'key' or something - so,
going back to 2.3 - regen a new RSA, exported meta into adfs, works just
fine.
Please raise a JIRA with the info above.
thx



More information about the keycloak-user mailing list