Hello,
i am wandering does anybody know if keycloak can support the creation for new users not to its internal database but to an external ldap database.?
Thank you
Sure, just create a user federation where Import Users = Off.
Yes, you can use LDAP provider with EditMode set to WRITABLE. If you
enable “Sync registration” switch, then newly created Keycloak users
will be created into LDAP. Some data of users are usually still saved in
Keycloak DB, usually those, which doesn’t directly map to LDAP (EG.
social links, consents, some other profile data and user attributes,
which don’t have corresponding counterparts in LDAP schema etc).
Marek