search

nextcloud / user_saml

:lock: App for authenticating Nextcloud users using SAML https://apps.nextcloud.com/apps/user_saml
https://portal.nextcloud.com/article/configuring-single-sign-on-10.html
GNU Affero General Public License v3.0
95 stars 75 forks source link

merge users (same sAMAccountName) - ldap / keycloak #622

Open andys448 opened 2 years ago

andys448 commented 2 years ago

Steps to reproduce

  1. Use KeyCloak for auth
  2. Trying login via Kerberos
  3. Get another user

Expected behaviour

Although this is a different authorization method, the user must be defined as existing.

Actual behaviour

New user created with the same username and full name

Server configuration

Operating system: RHEL

Web server: Apache

Database: MySQL

PHP version: 8

Nextcloud version: (see Nextcloud admin page) 23.0

for example pin message:

image

How to enable or define the user mapping feature. The same samaccountname are defined as different users. We want to map already existing users to those who log in using kerberos authorization.

We tried using social-login and OpenID Connect user backend and preferred_username.

Thanks for any help!

blizzz commented 2 years ago

user id received from the IdP has to match with the user id in nextcloud, also case sensitively.