[keycloak-user] Auth with Kaycloak

Marek Posolda mposolda at redhat.com
Mon Feb 19 09:19:24 EST 2018


You need to create LDAP UserStorage provider in admin console and then 
configure some mappers (Role mappers or Group mappers) for LDAP 
provider. See docs, admin console tooltips and our example "ldap" from 
keycloak-examples distribution for more details.

Marek

On 19/02/18 09:43, valsaraj pv wrote:
> Hi,
>
> I would like to know how to implement auth using Keyclock for an existing
> model using JAAS & LDAP. Currently a user is aithenticated with LDAP
> directly from login module. If the user is in LDAP group, those roles will
> be set. If there is no group for a user in LDAP, some hard coded roles will
> be set from login module. When Keyclock is used, what kind of role mapping
> required for this scenario? How to do this conditional role mapping?
>
> Thanks!
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user




More information about the keycloak-user mailing list