HI
We are using Keycloak 10.0.1 for our production app,and we have two keycloak server and setting HA with LDAP Federation,our HA use tcp connect setting,but when we call api auth/realms/test/protocol/openid-connect/token,most off user can synchro session on both server,but less user only appear their session on which server they call。
These are some schematic diagram
top is session not synchronize/under session synchronize
Why did this happened?
Our standalone-ha.xml tcp setting look like this,did anyone encounter this event。
Thank for any suggestion!!
You are using a more than outdated version. You’ll barely find anyone who can tell you anything about the behavior of this version.
I suggest to do an update a the most recent version first, and then investigate if the behavior still exists.
Thanks for the reply!!
OK,I’ll try to update our keycloak.
But Maybe we found what make this happen, our keycloak servers were connect to same LDAP, but when they both sync user, though whey got same user id, their ID were not same, I think it because we use keycloak origin database(H2), even if we use tcp HA, but the ID is different so session weren’t sync, Is there any way to synchronize users on both sides without connecting to other DB?
Thanks again for any replies or suggestions!!
