IDP Initiated SAML Identity Provider

[Björn Eickvonder]

Hi all,

until now my setup is as follows.

- My application uses the Keycloak JavaScript Adapter thus a user accessing my app is redirected by that adapter to the Keycloak login page.

- Within Keycloak I usually have a SAML identity provider configured, e.g. to MS Azure AD, thus user clicks on the corresponding button, then the SAML sp-initiated flow starts and user is finally authenticated and redirected back to the application.

Now a customer wants IDP initiated SAML, what Need to to configured (both within Keycloak as well as in the customer IDP) to allow this and especially how is the user redirected to my application?

Björn

[Garth]

Do you have a Client set up for the IDP initiated login? There are some docs and examples here:
- https://www.keycloak.org/docs/latest/server_admin/#idp-initiated-login
- https://www.lisenet.com/2020/keycloak-with-okta-idp-initiated-sso-login/
- https://medium.com/@nk-kumawat/gsuite-saml-app-with-keycloak-idp-initiated-sso-518d3e322a39

> --
> You received this message because you are subscribed to the Google
> Groups "Keycloak User" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to keycloak-use...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/keycloak-user/adb3618e-7d09-476d-89cb-3adee5234496n%40googlegroups.com
> <https://groups.google.com/d/msgid/keycloak-user/adb3618e-7d09-476d-89cb-3adee5234496n%40googlegroups.com?utm_medium=email&utm_source=footer>.