Reputation: 11
How to bypass keycloak consent screen for ext-idm users if user already present in keycloak and want to link automatically
We have configured a SAML based ext-idp with keycloak. Now we are trying to onboard users from ext-idm to keycloak. Usecase is, same user is already present in keycloak and same user is trying to login from ext-idm. Now keycloak is showing a consent page for linking the user. Is there a way to bypass this consent and link the ext-idm user to keycloak user?
For all Client Scopes in keycloak we disabled the 'Display On Consent Screen' option. All clients 'Consent Required' is disabled. Both changes did not help.
After disabling consent in Client scope we expected ext-idm users auto link with keycloak user. But as of now Keycloak asks for a consent before linking.
Upvotes: 1
Views: 825
Answers (1)
Reputation: 5122
Probably you changed a SAML client (SAML SP) settings but you need to change Identity Brokering (SAML IdP) settings. Please read this section:
Upvotes: 0
Related Questions
- Keycloak - how to allow linking accounts without registration
- How to bypass Keycloak login form and jump directly to the IDP login?
- Keycloak impersonation only for certain users
- Keycloak - direct user link registration
- Keycloak: How to login only through identity provider
- Keycloak flow to allow only authorized IDP accounts
- How to make Keycloak validate user consent?
- How to disable the SSO feature in the Keycloak
- Keycloak - external IDPs in Pop Up
- Authorization on Keycloak