[keycloak-user] Logging for X509 authentication flow
Page, Raymond (Techical Solutions )
Page_Raymond at ne.bah.com
Tue Mar 19 12:21:59 EDT 2019
I'm trying to get keycloak working with Wildfly authenticating clients directly by X.509 and then using the authentication flow in keycloak to translate that to a local user.
Unfortunately, it's not working and I'm not getting useful logging out of keycloak to determine what's wrong with my configuration. To debug, I need to know that undertow is passing the certificate successfully to keycloak, that keycloak's X509-form authentication is receiving the proper identity, the identity extracted from the certificate for authentication comparison, what it's being compared to (is the CN or DN being regexed and is it being compared to the keycloak custom attribute that I specified). What I get from enabling debug logging that's not jboss modules loads is:
18:59:38,702 WARN [org.keycloak.events] (default task-1) type=LOGIN_ERROR, realmId=TEST, clientId=https://auth.test.local, userId=null, ipAddress=192.168.0.100, error=client_not_found
Can someone provide details on how to get debug logging for undertow and the X509-form-config authentication?
--
Raymond Page, CTR (US)
Automation Engineer, UoT
TIS CTR to Booz | Allen | Hamilton
page_raymond at ne.bah.com
raymond.c.page15.ctr at mail.mil
C: (321) 549-7243<tel:(321)+549-7243>
W: (703) 679-8618<tel:(703)+679-8618>
More information about the keycloak-user
mailing list