I’m trying to use Keycloak to broker AzureAD users. I want to manage what applications and permissions users get access to through Keycloak. To give an example Joe User verifies through AzureAD that he is an active employee (IT manages that stuff). Keycloak has a configuration that shows Joe User can access 5 different AWS Accounts as well as Jenkins.
I have keycloak up and working. I’ve configed a Realm and added the IDP and was able to use the config url to pull the settings. I created the Azure Application and got the secret and brought that over. However i’m getting this error and I can’t figure out how to resolve it.
ERROR [org.keycloak.broker.oidc.AbstractOAuth2IdentityProvider] (default task-437) Failed to make identity provider oauth callback: org.keycloak.broker.provider.IdentityBrokerException: No access_token from server.
Any help would be greatly appreciated. Oh and Server Version is 8.0.0