LDAP Mapper GUID -> Base64 Auto Conversion

jiny · August 18, 2022, 1:21am

Hi,

I read that keycloak automatically converts guid mapper to base64;
so I added the mapper like below and keycloak log after the signin showed me that it is converted into base64.

[LDAP Mapper Config]
Mapper Type : user-attribute-ldap-mapper
LDAP Attribute : objectGUID

[TestGUID]
a40bd535-2ff6-41b6-b73d-0898a0fa5dd4

[Result in the Keycloak Log]
h9dBpMnSAkiLS6KBWJ6+uQ==

The problem is, it does not match with the value I converted using this site : GUID Converter - Tool Slick
It must be “NdULpPYvtkG3PQiYoPpd1A==”.
When I convert “h9…=” back to guid, it’s “A441D787-D2C9-4802-8B4B-A281589EBEB9”, which is different from the guid I received from the ldap.

So I’m now wondering if keycloak adds some kind of salt or what during the conversion…
Is there any way I can purely convert guid into base64?

jiny · August 22, 2022, 6:48am

Oh I think I found the reason.
I thought ObjectGuid = msExchMailboxGuid but guess not.
So it must be like below I guess…?

ObjectGuid : A441D787-D2C9-4802-8B4B-A281589EBEB9
msExchMailboxGuid : a40bd535-2ff6-41b6-b73d-0898a0fa5dd4

Then I want to know how to convert msExchMailboxGuid to base64.
Has anybody tried this?

Topic		Replies	Views
Change local UID to LDAP UID (?)	0	294	October 17, 2023
LDAP mapper objectclass	0	164	November 10, 2023
Custom LDAP Mapper Getting advice ldap , oidc	0	466	March 30, 2021
Active Directory User Federation not mapping objectSid as expected Configuring the server identity-brokering , ldap	2	1301	March 5, 2024
LDAP Attribute to Keycloak Role	0	335	April 22, 2020

LDAP Mapper GUID -> Base64 Auto Conversion

Related Topics