We’ve recently spun up a new instance of keycloak (after previously working with Okta).
In our case, we have an integration back to an openLDAP server that we have successfully connected to but have a question about the * Users DN * entry.
Our current LDAP setup has a people OU ou=people,dc=malariagen,dc=net underneath sits 2 different OUs ou=users,ou=people,dc=malariagen,dc=net and ou=contacts,ou=people,dc=malariagen,dc=net.
In Okta we were able to import users at the highest level ou=people,dc=malariagen,dc=net but write new users to the users group ou=users,ou=people,dc=malariagen,dc=net. However, in keycloak it seems to be that there is only a single entrypoint to the Users DN and we are unable to do the same as in Okta.
Is there any known way of allowing for a different entrypoint for importing users and creating new users as we’d rather avoid having users in three different places in our LDAP directory?
Thanks in advance,
Liz