Hi, I’m encountering an issue while using SSO with Keycloak: I’ve created the identity provider in Keycloak. When the user attempts to connect to the IDP via SSO, authentication succeeds sometimes, but fails at other times. It displays the following message: ‘Forbidden - You don’t have permission to access /auth/realms/XXX/broker/XXX/endpoint on this server!’, can anyone help me please?
Do the server logs offer additional clues?
Intermittent failure problems are commonly due to having multiple Keycloak instances that aren’t correctly configured to cluster. Per @melancholia 's suggestion, have you looked at your logs and validated that clustering is working properly?
No, when I use the SAML tracer to track the response, it shows a success status code. However, I encounter a ‘Forbidden’ page being displayed.
