Hello, I have a Keycloak system federated with FreeIPA LDAP, and I’m facing the following issue: On the FreeIPA WebUI, when a user is disabled, the user still remains active in Keycloak and SAML/OIDC clients are still able to authenticate successfully (this behavior did not occur before). I haven’t been able to identify the root cause or the solution yet.
My question is: how can I ensure that when a user is disabled in FreeIPA, the corresponding LDAP entry exposes an attribute that Keycloak can use to detect and mark the user as disabled as well? Thank you in advance for your support. Best regards, -- _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
