[keycloak-user] LDAP user group membership not syncing
Dmitry Telegin
dt at acutus.pro
Tue Oct 30 00:41:30 EDT 2018
Hi,
Could you please test it with the recent version of Keycloak? Since 3.x, quite a lot has been done on user federation in general and LDAP in particular.
Cheers,
Dmitry Telegin
CTO, Acutus s.r.o.
Keycloak Consulting and Training
Pod lipami street 339/52, 130 00 Prague 3, Czech Republic
+42 (022) 888-30-71
E-mail: info at acutus.pro
On Mon, 2018-10-29 at 07:37 -0700, arbiterfwhim wrote:
> Luiz Carlos wrote
> > I'm trying to sync the LDAP groups into Keycloak but it doesn't update the
> > membership if I add or remove it from a group in LDAP.
> > --
> > Luiz Carlos
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at .jboss
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
>
> Bumping this. I'm currently using Keycloak 3.2.1 and am having similar
> issues with LDAP syncing. My main issue is that when a user is granted a new
> role on the LDAP side, that user (on the Keycloak side) doesn't get updated
> to have that role when running a full sync (manual or scheduled).
>
> In order to sync these changes I have to delete the user(s) and then run an
> LDAP sync. This re-adds the user(s), this time with their latest set of
> roles. Unfortunately I haven't found any settings in the Keycloak admin
> console that can fix this. A solution would be greatly appreciated.
>
> - Whim
>
>
>
> --
> Sent from: http://keycloak-user.88327.x6.nabble.com/
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
More information about the keycloak-user
mailing list