Question regarding SecurityPolicies/PolicyRules

Thomas Rudolf mail at
Tue Oct 12 16:05:16 UTC 2021

Hi all,

we are running shibboleth as service provider and recently added "blockUnsolicited" and "checkCorrelation" to our security policy rules. Unfortunately, that doesn't play well with keyCloak. Since we're using other IdPs as well that do work with those directives, we'd like to create PolicyRules with conditions so that the above mentioned flags/directives are not used when interacting with keyCloak.
I tried to figure out how to implement this by studying the documentation but unfortunately i was not able to work it out.
Could anyone point me in the right direction of how this could be achieved? Any help would be much appreciated.

Thomas R.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list