Hi to all, I’ve set an identity provider and now in my login page I’ve the choice to authenticate also with the IDP. I would like to use directly the idp page for all the clients.
I’ve try in the authentication flow to set in “Identity Provider Redirector” the Default identity provider
but when I try to login I’ve also the first login page with the IDP choice.
Hpow can use directly the IDP login?
thanks
Have you added the Authenticator workflow to the Client?
Try setting the “Forms”-Authenticator to ALTERNATIVE or DISABLED. Or create a new Flow containing only Cookie and IdP Redirector, and then use that new Flow as default Browser flow.
Yes I’ve added. in fact if I try to change something in the authenticator workflow I can see the effect during the authentication
I’ve try every combination, I’ve also create a new flow but if I disable the forms or I don’t insert it in the new flow I’ve this error:
I’ve try to create a new flow like this:
or modify the default one like this:
But I’ve the previous error.
any idea?
I have a flow which looks exactly like your first screenshot. Are you sure you linked this flow to the browser-Binding? Or configured it as the login flow in the client (section “Authentication Flow Overrides”)?
Yes, I’m sure
in fact switching between SAMLIDP and “original browser” the authentication change, with SAMLIDP I’ve always the previous error. maybe I’m missing something?
I’ve made some test looking logs and I’ve found solution.
I had specified like default identity provider the display name of the IDP and not the alias.
using alias it works fine.
Thanks for support
Hi I’m facing same issue
my alias is Microsoft and I want to jump to Microsoft sign in directly.
I am using Microsoft as identify provider connected with AAD
To configure Keycloak to go straight to IDP login, you must first set up a default IDP.
Check out the documentation: keycloak-documentation/default-provider.adoc at main · keycloak/keycloak-documentation · GitHub
Hi, I was unable to open the above link.
Could you please check it once.
Hi , can anyone share how to by pass the keycloak login page to idp.
Scenario:
I have a keycloak which is running in two different ports
8080- is my service provider
9090 - is my identity provider
in this case when I login I should not get the 8080 login page instead it should redirect to the 9090 login page which is idp.
how can I configure this.
Thanks in advance
Use and read the docs, find the proper chapter!
https://www.keycloak.org/docs/latest/server_admin/index.html#default_identity_provider
This helped, Thank you!
Could you please help with the below story too.
Scenario: I am having existing users in my local db( mysql) , i want to integrate these user tables into keycloak.How can I do this. I have tried with custom spi but no luck the created custom id name is not displaying in keycloak.
Thanks in advance!
Please don‘t misuse a specific thread for a different/new topic. Start a new thread instead.
Hi, My Usecase is a little bit similar.
Use case: If Login fails in keycloak login page then redirect to a identity provider and authenticate from there automatically if user is present there.
Note: Identity provider is another Keycloak Instance
.
