En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

OIDC Provider Couldn't retrieve verification key from your identity provider

0

I am trying to create Keycloak as an Identity Provider in the console but I am getting a "Could not connect to openid configuration of provider" when I click get thumbprint.

I am able to create the OIDC provider through the CLI, but when I try to do a AssumeRoleWithWebIdentity call, I get "couldn't retrieve verification key from your identity provider, please reference AssumeRoleWithWebIdentity documentation for requirements"

I have referenced https://forums.aws.amazon.com/thread.jspa?threadID=248411&tstart=0 and https://forums.aws.amazon.com/thread.jspa?messageID=600673

The jwks uri exists at the provider url appended with "/.well-known/openid-configuration". I am using self signed certs for Keycloak, and still not entirely sure whether this is okay.

I have also referenced https://forums.aws.amazon.com/thread.jspa?threadID=254423 and have tried with both wildcard and non-wildcard self signed certs.

Been stuck on this for a while, anyone have any insight? Thank you.

Sujets
Sécurité, identité et conformité
Balises
Gestion des identités et des accès AWS
Langue
English
shxpark
demandé il y a 2 ans448 vues
1 réponse
0

I"m also facing the same problem with Keycloak(IDP). Has there any luck? Did you able to get through this issue?

rePost-User-5257879
répondu il y a un an

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents