Keycloak SAML SSO - Role Mapping

When using Keycloak as an identity source via SAML, a role mapper must be defined on the Keycloak client configured for Morpheus to map Keycloak roles to Morpheus roles.


The ‘Role attribute name’ that is set on the mapper will need to be defined in Morpheus identity source settings and ‘Single Role Attribute’ needs to be ‘On’.