Unable to specify RequestedAuthnContext through Keycloak SAML adapters

Solution Unverified - Updated -


  • RH-SSO SAML Adapter is unable to specify a <samlp:RequestedAuthnContext> element in the SAML AuthnRequest, while the 3rd-party SAML IdP seems to expect this


  • Red Hat Single Sign-On (RH-SSO)
    • 7.x
  • Integrating an SP application (secured by RH-SSO Client SAML Adapter for JBoss EAP) with an external SAML IDP (a 3rd-party SAML IdP, and with No use of RH-SSO Identity Brokering)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In