Authorization layer in IDP

Fabien BERTEAU fabien.berteau at
Wed Oct 27 06:37:59 UTC 2021

Hi !

Some of the SaaS applications we use at ManoMano just accept any
authentication from our Keycloak SAML IDP. All authorization parts are made
through their GUI and we don't have the ability to automatically declare
that ourselves, from our user data source (RBAC, etc.), who can do what.
I would like to know if there is a possibility to have an authorization
layer in the Shibboleth IDP, in order to study the possibility of switching
from Keycloak one to Shibboleth one ?

Best regards,

Fabien Berteau | Security Architect


fabien.berteau at <aurelien.lajoie at>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list