RH-SSO/RHBK user synchronization fails to find users in LDAP

Solution Verified - Updated -

Issue

  • We have created Active Directory User Federation in RH-SSO. On performing "Synchronize all users" in user federation, no user is imported. The test connection and authentication works fine for LDAP. No error is logged except below log message
INFO  [org.keycloak.storage.ldap.LDAPStorageProviderFactory] (default task-179) Sync all users finished: 0 imported users, 0 updated users
  • While user is attempting to login, they are getting Invalid username or password error with correct credentials. In the RH-SSO logs user_not_found error is logged.
type="LOGIN_ERROR", realmId="xxxxxx", clientId="xxxxxx", userId="null", ipAddress="xxxxxx", error="user_not_found", auth_method="openid-connect", redirect_uri="https://xxxxxx/xxxxxx", 
code_id="ddddddddd", username="xxxxxx", authSessionParentId="zxzzzzzzz", authSessionTabId="yyyyy"

Environment

  • Red Hat Single Sign-On
    • 7.x
  • Red Hat Build of Keycloak (RHBK)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content