Hi Vitali,
Is there any tracing you can enable in KeyCloak so that you can see the exact requests and responses being exchanged with Verify? Perhaps there's an issue with the API client configured in Verify for KeyCloak to use? Maybe it doesn't have the right permissions for the actions it needs to perform - or maybe it's trying to use an OAuth grant type that is not configured?
It's hard to know what is wrong without knowing exactly what steps the user is taking and the request that is failing.
Jon.
------------------------------
Jon Harry
Consulting IT Security Specialist
IBM
------------------------------
Original Message:
Sent: Wed August 25, 2021 01:11 AM
From: Vitali Lushchyk
Subject: Keycloak user registration
Hi Team,
When trying to register new user via auth flow we get error 400 on the keyloak side (Unexpected error when handling authentication request to identity provider.)
Everything was configured according to the manual (IBM Security Verify Authenticator Extensions for Keycloak)
Could you tell me what is the reason for this?
------------------------------
Vitali Lushchyk
------------------------------