Indeed in the PG case, you have a real PG user in the database so you can
assign users like you want. GeoServer does not have this user store.
If you already have an experience on Keycloak, it's definitely a good
candidate for your case: you manage groups and users in Keycloak and
delegate authent
I just played with LDAP/AD integration this week and I don't think it's a
possible pattern: when authenticated through LDAP/AD users are not defined
in the GeoServer UI so you cannot associate them to existing groups.
A workaround could be to use SAML authentication with Keycloak and to
manage the
Hello
We've got a test setup of Geoserver authenticating users against LDAP
(Active Directory). I can see various methods of using LDAP/AD group
membership to apply permissions to Geoserver layers etc.
However, is there a way in which I can group LDAP users in Geoserver
itself, without having to