[keycloak-user] help with freeipa+keycloak+saml
Yossi Baruch
yossi.baruch at iucc.ac.il
Sun May 13 02:49:05 EDT 2018
Hi,
I'm using KC to connect to FreeIPA and create a user federation, I'm mapping several attributes from FreeIPA, among them is eduPersonTargetedID (EPTID). This EPTID is used to connect to a saml client and then as one of the attributes used in the edugain federation.
The issue is that EPTID should be an array and not a single value, I get errors from the inter-federation that this EPTID is not structured right, I think that usually this EPTID is generated whenever the saml client connects but I have no idea how to do so.
Anyone has an opinion about this? Has mitigated this In the past?
[https://ci3.googleusercontent.com/proxy/7W7WLuvZjirS7ZgZCSisfzJizY7_Rc_hUy9DuIOC088v_670fQpK0J-xmTdjXc05GyNzRwUDVPzMIGXH9IytuClaNK4RMTLwvMo0VusyQ0I1zno=s0-d-e1-ft#http://www.iucc.ac.il/wp-content/uploads/2013/04/IUCCLogo.png]
Sincerely Yours,
Yossi Baruch, IT specialist
office: +972-3-646-0569
fax: +972-3-646-0557
E-Mail: yossi.baruch at iucc.ac.il<mailto:yossi.baruch at iucc.ac.il>
Website: www.iucc.ac.il<http://www.iucc.ac.il/>
"May The Force Be With You." — Master Yoda
"I'm trying to free your mind... But I can only show you the door. You're the one that has to walk through it." — Morpheus
"We are continually faced with a series of great opportunities brilliantly disguised as insoluble problems." - John W. Gardner
"Do not go gentle into that good night,
Old age should burn and rave at close of day;
Rage, rage against the dying of the light." - Dylan Thomas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 2920 bytes
Desc: image001.jpg
Url : http://lists.jboss.org/pipermail/keycloak-user/attachments/20180513/1df63a2a/attachment.jpg
More information about the keycloak-user
mailing list