when we authenticate our users through Netscaler, we check the attribute "member of" in their ldap account.
So we extract all ldap groups, which the user belongs to.
The user can be in some ldap groups, which have a special character in its name.
In this case & would be the special character.
Keycloak parses such a special character in the standard xml syntax, which would be
in that case. So the group looks like this:
When we send this SAML response to Keycloak, we receive the following error:
11:33:40,538 ERROR [stderr] (default task-79) [Fatal Error] :1:7990: The reference to entity "FLORIAN_MSC" must end with the ';' delimiter.
11:33:40,538 ERROR [org.keycloak.services.error.KeycloakErrorHandler] (default task-79) Uncaught server error: org.keycloak.broker.provider.IdentityBrokerException: Could not process response from SAML identity provider.
So the authentication fails.
Please help us to solve this error.