Hej all,
Hopefully one of you can help me.
I am using keycloak 11.0.0 and have added two Active Directory (AD 1 and AD 2) backends as user federations.
Getting users from them is no problem at all.
However, I now want to add a group-ldap-mapper for mapping an AD group to a keycloak internal group, respectively the users inside the AD group to have the according rights inside keycloak.
Getting the AD groups is working as well, but when it comes to the group members, the trouble starts.
The group is coming from AD 1 (ldap-group-mapper configured on AD 1) and inside the AD has members from both AD backends (AD 1 and AD 2) in it.
When now checking the imported AD group inside keycloak, I only see the users from AD 1 in it, not the once from AD 2.
I also tried to add the ldap-group-mapper on AD 2, but this does not help for getting the users in the imported group.
Do you know, if there is a way of accomplishing this?
Best Regards,
Tim.