IBM Security Verify

 View Only
  • 1.  Keycloak user registration

    Posted Wed August 25, 2021 10:20 AM
      |   view attached
    Hi Team,
    When trying to register new user via auth flow we get error 400 on the keyloak side (Unexpected error when handling authentication request to identity provider.) 
    Everything was configured according to the manual (IBM Security Verify Authenticator Extensions for Keycloak)
    Could you tell me what is the reason for this?


    ------------------------------
    Vitali Lushchyk
    ------------------------------


  • 2.  RE: Keycloak user registration

    Posted Fri August 27, 2021 07:53 AM
    Hi Vitali,

    Is there any tracing you can enable in KeyCloak so that you can see the exact requests and responses being exchanged with Verify?  Perhaps there's an issue with the API client configured in Verify for KeyCloak to use?  Maybe it doesn't have the right permissions for the actions it needs to perform - or maybe it's trying to use an OAuth grant type that is not configured?

    It's hard to know what is wrong without knowing exactly what steps the user is taking and the request that is failing.

    Jon.

    ------------------------------
    Jon Harry
    Consulting IT Security Specialist
    IBM
    ------------------------------