Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-11710

Create options for linking LDAP imported Groups and Roles

    Details

    • Docs QE Status:
      NEW
    • QE Status:
      NEW

      Description

      There's no way to link groups and roles automaticaly imported from Tivoli Ldap.

      Tivoli's configuration is:
      role class: groupOfUniqueNames cn=ROLES

      groups of the role:
      uniquemember: cn=groupXX,cn=PROFILES,etc

      grup class: groupOfUniqueNames cn=PROFILES
      users of the group:
      uniquemember: uid=userXX,cn=PROFILES,etc

      Users to groups can be linked perfectly, but there is no options to link and get user's roles through user->group->role

      In attachment, the Tivoli configuration. Keycloak don't have a option to set a mapper in a way to get users roles through user > group , group> roles relationship.

        Gliffy Diagrams

          Attachments

          1. 1.png
            1.png
            41 kB
          2. 2.png
            2.png
            45 kB

            Activity

              People

              • Assignee:
                mposolda Marek Posolda
                Reporter:
                juliosardella Julio Sardella
              • Votes:
                2 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated: