SSO Login Issues: Incorrect User with Kerberos Authentication / Logout not possible

UCS - Univention Corporate Server
, , ,
#1

Hello,

I’m currently logged in with my Admin-Account on my domain-joined Windows 11 machine. However, whenever I try to log in to the Univention portal using Firefox via SSO, I’m automatically logged in as a different user (a regular user I had previously logged in with on this machine) instead of the currently logged-in Admin account.

I’m unable to log out or switch to the correct user.

I’m running Univention 5.0-8 errata1095 with Keycloak as the IdP. I’ve configured Kerberos authentication as described in the documentation: Univention Keycloak Configuration.

I’ve cleared the browser cache and tried klist purge, but nothing seems to work.

Any advice or tips?

#2

try opening a “private session” web window…
it might be a bug holding onto something.

#3

Yeah.
Chrome and private session is working. Iam just curious if its an keycloak/univention problem or firefox

#4

Chrome is also not working. It seems that the computer always gets an kerberos ticket for a diffrent user.

Mastodon