Keycloak same username in multiple federations
I have two user federations in one realm (different active directories). Because both are completely independent, in occurs that the same username is used.
In Microsoft Applications you can use something like "ad1\ttestuser" and "ad2\ttestuser". Is there a way I can configure Keycloak to choose the user federation on login? A solution would be to add a prefix to the username in the mapper but there is no way to do it.
Is there a way I can configure Keycloak to choose the user federation on login?
You could create a different realm per user federation that you want your users to be able to explicitly authentication against. Then you configure each user federation in its own realm. Finally, you configured those realms to do identity brokering against the original realm.
The login page would look something like:
You can have a look a this answer which describes this setup in more detail.
- Enable interactive render mode on Blazor templates accounts pages
- how do i link login form to html website on computer
- How to update database of parent class and [Owned] attribute class type in Entity Framework Core 8.0.8
- How to debug Bearer error="invalid_token"
- How to allow multiple accounts on the same browser in flask?
- Kubernetes Authentication no re-create token
- What should we store in the session when using session-based authentication?
- Use React Authentication with .NET backend?
- How to authenticate large numbers of amazon S3 get requests
- Can a client-side login be safe?
- I'm trying to connect with my Heroku app and when I enter my email and password, it's asking me "Enter the code generated by your authenticator app."
- How to generate COMMON KEY RING to Share cookies across subdomains?
- django after submit login info, does not lead to intended detail view page
- Getting OAuth code challenge on loopback server
- Login with Windows challenge goes in loop in ASP .Net app
- Unable to login to GitHub account even with correct credentials
- 10 second delay between login and shell prompt.
- Accessing private Azure Blob Storage using BlobServiceClient
- Supabase signUp returning AuthRetryableFetchError 504
- Cypress can't find the password field in the Microsoft Login
- Where is correct place to authenticate users from multiple places?
- symfony - getting logged out at form->handleRequest
- Laravel auth vs Passport vs Sanctum
- Hit web endpoints behind Devise authentication with non-browser request in a Rails app
- HERE Geocoder API: authentication problem
- Cookie LoginPath not redirecting to path
- why my postman basic auth not working correctly?
- AWS Cognito: Missing Scopes in Access Token with Custom UI and Device Remember Functionality for MFA
- Cypress test starts from the begining for every test case
- Auth.js v5 Database Session Strategy for Credential Provider Returning Null