[keycloak-user] ldap federation working | test connection / authentication buttons failing

cedric@couralet.eu cedric at couralet.eu
Thu Jul 4 07:50:59 EDT 2019 

Le Jeudi, Juillet 04, 2019 12:52 CEST, mj <lists at merit.unu.edu> a écrit: 
 
> Hi,
> 
> Off list, someone asked me to check if ldap://127.0.0.1:389 would work 
> better than ldap://localhost:389, but it doesn't.
> 
> But I am now also trying to fill in actual remote ldap servers, and they 
> also don't work. Again nothing at all logged in server.log
> 
> Do the test buttons work for others here?

Hello,

It works for me with keycloak 6.0.1.
The button sends a request to https://<keycloak>/auth/admin/realms/<realm>/testLDAPConnection, can you try examining the response you have with this request (in the browser dev tools for instance) ?

Regards,
Cédric Couralet



> MJ



> 
> On 7/3/19 10:55 AM, mj wrote:
> > Hi,
> > 
> > Keycloak 6.0.1, LDAP federation is working, users can logon and are
> > updated automatically regularly from ldap:
> > 
> >> 2019-07-02 17:39:49,761 INFO  [org.keycloak.storage.ldap.LDAPStorageProviderFactory] (Timer-2) Sync changed users from LDAP to local store: realm: our_realm, federation provider: our_realm-ad, last sync time: Mon Jul 01 17:39:43 CEST > 2019-07-02 17:39:50,067 INFO  [org.keycloak.storage.ldap.LDAPStorageProviderFactory] (Timer-2) Sync changed users finished: 3 imported users, 22 updated users
> > 
> > In keycloak, the configured ldap uri is ldap://localhost:389, where a
> > haproxy instance is listening that talks ldaps to our DCs.
> > 
> > The 'problem': in the keycloak GUI, the buttons 'Test authentication'
> > and 'Test connection' do not work:
> > 
> > "Error! Error when trying to connect to LDAP. See server.log for details."
> > 
> > But nothing logged in server.log, and haproxy does not even log a
> > connection attempt at all.
> > 
> > Anyone else seeing this..?
> > 
> > MJ
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
> > 
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user

More information about the keycloak-user mailing list