[keycloak-user] Fwd: LDAP Registration user sync
Kevin VAN DEN ELSHOUT
kevin.vandenelshout at inbo.be
Wed Sep 6 09:49:34 EDT 2017
Hi,
We are using Active Directory. Strange thing is that if I login afterwards
everything works as expected.
Kind regards,
Kevin
On Wed, Sep 6, 2017 at 3:46 PM Marek Posolda <mposolda at redhat.com> wrote:
> Which LDAP vendor are you using? I guess that you need to configure
> correct LDAP UUID Attribute in Keycloak admin console. Unfortunately
> almost all LDAP vendors have something special here.
>
> Marek
>
> On 06/09/17 09:20, Kevin VAN DEN ELSHOUT wrote:
> > Hi,
> >
> > I have an ldap user federation configured with sync registrations ON.
> >
> > Now when I register a new user, this user is synced to ldap but not saved
> > into local DB (synced back from ldap).
> >
> > [org.keycloak.storage.ldap.LDAPStorageProvider] (default task-21) LDAP
> User
> > invalid. ID doesn't match. ID from LDAP [test at mailinator.com], LDAP ID
> from
> > local DB: [ ]
> >
> > Any idea what I am doing wrong?
> >
> > CODE_TO_TOKEN_ERROR
> > Error user_not_found
> > Details
> > grant_type authorization_code
> > code_id 7ac8c3c7-c9d3-413a-bb83-401047925b92
> > client_auth_method client-secret
> >
> > LOGIN
> > auth_method openid-connect
> > auth_type code
> > redirect_uri ***/sso/login
> > consent no_consent_required
> > code_id 7ac8c3c7-c9d3-413a-bb83-401047925b92
> > username ***
> >
> > REGISTER
> > auth_method openid-connect
> > auth_type code
> > register_method form
> > redirect_uri ***/sso/login
> > code_id 7ac8c3c7-c9d3-413a-bb83-401047925b92
> > email ***
> > username ***
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
>
>
>
More information about the keycloak-user
mailing list