[英]What is the best way to federate users from Azure AD to Keycloak?
I haven't found a clear answer addressing this topic, which is surprising given that it seems like a common scenario.我还没有找到解决该主题的明确答案,考虑到这似乎是一种常见情况,这令人惊讶。 Can anyone provide some guidance or resources for setting up this type of user federation?
任何人都可以提供一些指导或资源来建立这种类型的用户联盟吗?
I have done some research and learned that Keycloak can accept Kerberos or LDAP user federation, but this source claims that Azure AD does not support LDAP. Despite this, I haven't found a clear "best option" for this process.我做了一些研究,了解到 Keycloak 可以接受 Kerberos 或 LDAP 用户联盟,但是这个消息来源声称 Azure AD 不支持 LDAP。尽管如此,我还没有找到这个过程的明确“最佳选择”。 I'm hoping someone who has actually set up this type of federation can provide some guidance or resources to help me achieve this goal.
我希望真正建立过这种联盟的人可以提供一些指导或资源来帮助我实现这个目标。
You can connect Azure AD and KeyCloak via SAML2 and an app registration in Azure AD.您可以通过 SAML2 连接 Azure AD 和 KeyCloak,并在 Azure AD 中注册应用程序。 Alphabold has a nice article about creating this setup.
Alphabold 有一篇关于创建此设置的好文章。
In short the steps are:简而言之,步骤是:
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.