[keycloak-user] kc2.4 - breaks PK idp brokering to adfs
java_os
java at neposoft.com
Wed Dec 21 10:51:42 EST 2016
I should add: to begin with I've upgraded to 2.4 and importing the realm
that was working fine on 2.3 - and things started to break - spending time
to isolate and understand the issue - and my findings in the prev email.
> Hi,
> In KC 2.3 I can establish trust with adfs by exporting kc meta and
> importing into adfs.
> With KC 2.4 - this breaks - I tried to re-gen the rsa key, export meta,
> import into adfs - it fails on this adfs error:
> "ID4037: The key needed to verify the signature could not be resolved from
> the following security key identifier 'SecurityKeyIdentifier"
>
> I'm seeing from UI perspective you've added stuff into around PK in 2.4 -
> but behind the scenes something is breaks on the 'key' or something - so,
> going back to 2.3 - regen a new RSA, exported meta into adfs, works just
> fine.
> Please raise a JIRA with the info above.
> thx
>
More information about the keycloak-user
mailing list