Cybersecurity
DevOps Cloud
IT Operations Cloud
Fortify Software Security Center (SSC) 24.2
Keycloak
When configuring SSO in SSC with Keycloak, the SSO authentication is failing. Looking at the Keycloak logs, the following warning can be found:
WARN [org.keycloak.events] (executor-thread-4386) type="LOGIN_ERROR", realmId="realm", realmName="realm", clientId="null", userId="null", ipAddress="###.##.###.###", error="client_not_found", reason="Cannot_match_source_hash"
This was caused by the Client ID setting on the Keycloak side not matching the SP entity ID setting of the SSO configuration in SSC.