我们正在尝试找出一种将用户从 Azure 帐户同步到 Keycloak 的方法?
不幸的是,我们找不到它的文档
你知道正确的方法吗?
我想使用 Azure 作为外部数据库,用于对用户进行身份验证。
谢谢
最佳答案
I want to use Azure as an external DB that I can use to authenticate my users
为此,您可以使用 Keycloak's User Federation功能:
Many companies have existing user databases that hold information about users and their passwords or other credentials. In many cases, it is just not possible to migrate off of those existing stores to a pure Keycloak deployment. Keycloak can federate existing external user databases. By default, we support LDAP and Active Directory, but you can also code your own extension for any custom user database using our User Storage SPI.
The way it works is that when a user logs in, Keycloak will look into its own internal user store to find the user. If it cannot find it there, it will iterate over every User Storage provider you have configured for the realm until it finds a match. Data from the external store is mapped into a common user model that is consumed by the Keycloak runtime. (..)
在文档的该部分中,您拥有所需的一切。尽管如此,要添加用户联合:
- 前往你的领域;
- 选择用户联盟;
- 添加提供商 -> ldap;
- 相应地配置所有必需的设置;
- 保存。
关于azure - 如何将 Microsoft 用户从 Azure 同步到 Keycloak,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/66151538/