User Account Linking

[S Bala]

I trying to link external IdP (OIDC provider) user account to internal keycloak (OIDC consumer) using first broker login auth flow. User(email) already exists on keycloak but keycloak always tries to provision account instead of automatically linking based on email address (which is the user id). In case of account link the user is being prompted for username and password, where as the user in keycloak does not even have a password.

Can someone let me know how to enable automatic account linking on keycloak consumer, when the email address matches.

[Björn Eickvonder]

You need a custom authentication flow with idp-auto-link.

[S Bala]

I have an existing custom authentication flow, which redirects to specific Idp based on conditions. However I'm trying to achieve this using customized first broker login.