Hello, I have a problem with saml different keys for signing and encrypting. I would like to have different but keycloak constantly gives me the same. What I did: In Realm settings → Keys → Providers → Add keystore I created RSA and RSA-ENC providers with uploaded different key and certificate. But when I click in keycloak on Identity Providers → click on provider → and click in Enpoints on value I see Servis provider endpoint xml with signing and encryption with the same key. Signing key is used for encryption. Is any way how to have different keys, please?
2 Likes
I’m using keycloak 20.0.3 and have the same issue. is it a bug?
I am using keycloak 15.1.1 and i have the same problem is it a bug, some settings i am missing or something else. Any progress with this issue?
I’d also be interested to know if it’s possible to use different certs/keys for token signing and token encryption/decryption.