[keycloak-user] can't resolve groups from multiple group mappers

Tiemen Ruiten t.ruiten at rdmedia.com
Tue Sep 26 06:04:31 EDT 2017


Hello,

I'm testing with the following setup:

In our Active Directory, which is federated to Keycloak, we have a
container with 'access' groups (groups that are used to give access to
certain applications, akin to Keycloak roles) and a container for 'user'
groups (eg. sales, it, marketing etc.). Users are always only direct
members of a user group. The access groups can only have user groups as
members, never users.

In Keycloak, I have created two LDAP-group-mappers for both containers, but
unfortunately, none of the user groups show any members. Is this expected?

Using Keycloak 3.2.1 Final.

-- 
Tiemen Ruiten
Systems Engineer
R&D Media


More information about the keycloak-user mailing list