Keycloak Admin Rest API unknown_error for update user API

Question

I am trying to add a custom attribute to a user using Admin Rest API. When i try with default master realm, its working fine. But when i try it with another realm that i created, it yields "unknown_error".

I have attached the screenshot of request below.

Answer 1

You haven't granted related permissions to your realm.

Go to 'Clients' -> select your client -> 'Service Account Roles':

• In the client roles dropdown box, click realm-management
• In Available Roles box, select related roles. Try manage-users and view-users.

Then get a new access token and try your API call again.

Answer 2

Apparently the Admin API needs to be accessed via the admin-cli client.

I got a 403 {"error":"unknown_error"} when I wanted to use a copy of the default admin-cli client.