Chris
Reputation: 379
Setting AuthnContextClassRef in Keycloak
I am rather new to SAML, specifically integrating applications with Keycloak. I am running into an issues with <AuthnContextClassRef> that's part of <AuthnContext>. The requirements from the SP state that the URN needs to end with PasswordProtectedTransport. The output I am getting in the returned SAML assertion is ending with unspecified:
My output: <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml:AuthnContextClassRef>
Desired output: <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml:AuthnContextClassRef>
Where can I define this in Keycloak?
Upvotes: 4
Views: 1691
Answers (1)
Related Questions
- Using auth0 with keycloak
- Configuring keycloak saml from the command line
- how to get saml-metadata for keycloak as sp with certificate
- Keycloak adding new authenticator
- Setting up Keycloak for authentication
- How to allow Single Sign-On for al clients in keycloak
- Keycloak-6.0.1 Custom Authenticator SPI
- Keycloak "Unexpected error when handling authentication request to identity provider"
- How do I get KeycloakSecurityContext to be set in the httpServletRequest in Keycloak's account-linking doc?
- SAML 2 extensions in AuthnRequest (Keycloak)