2 Dec
2025
2 Dec
'25
10:53 a.m.
Hello,
I am currently looking into sssd-idp for authentication with Keycloak. And that works fine, but I would be interested in accessing the tokens (access, refresh, id) after logging in. AFAICS, those are neither passed through by PAM with forward_pass, nor is there any sssctl subcommand to do this.
Is there some way to do this currently, or if not, is this planned in some way?
Regards, Timo