[3.0] Cannot login for the first time when using only Microsoft external authentication
hiroshisuga opened this issue · comments
The user cannot login through Keycloak external authentication even if he follows the instruction of the document.
I set up a BBB3.0a6 with GL3.0 server de novo, set up an external authentication with Microsoft without creating any account.
When I enter with my Microsoft account, Keycloak stopped with the error "keycloak | 2024-05-29 04:14:49,354 ERROR [org.keycloak.services] (main) KC-SERVICES0010: Failed to add user 'admin' to realm 'master': user with username exists"
To overcome this, I need to login Keycloak and remove the "admin" account from the realm 'master' manually.
I am not sure if this is an edge case or general phenomenon. I post it in case some other users have a similar problem.
You should not be using the master Keycloak realm for clients, there should be a new realm created (like "greenlight") and used with greenlight.
Yes, that's what I did, as far as I recognized. I met this phenomenon already twice. Even if I did something wrong, it may be a pitfall that beginner can fall down...so this post may help somebody else.
I personally haven't ran into this problem. Keycloak generates a default admin user on the master realm, hence why we suggest creating a new realm in the install docs https://docs.bigbluebutton.org/greenlight/v3/external-authentication/#configuring-keycloak