diff --git a/authenticator/src/main/java/cz/cesnet/keycloak/CustomAuthenticator.java b/authenticator/src/main/java/cz/cesnet/keycloak/CustomAuthenticator.java
index 0b79a3789c77c245c7c1ff5dc37e7c2d9adb1bbf..489a84b1774bb715b0d88358c8a4037ef625fcbc 100644
--- a/authenticator/src/main/java/cz/cesnet/keycloak/CustomAuthenticator.java
+++ b/authenticator/src/main/java/cz/cesnet/keycloak/CustomAuthenticator.java
@@ -17,7 +17,6 @@ import org.slf4j.LoggerFactory;
 
 import jakarta.ws.rs.core.Response;
 
-import java.util.List;
 import java.util.Map;
 
 import static org.keycloak.authentication.authenticators.broker.AbstractIdpAuthenticator.BROKERED_CONTEXT_NOTE;
@@ -30,6 +29,7 @@ public class CustomAuthenticator implements Authenticator {
     private final static String EDU_PERSON_ENTITLEMENT = "eduperson_entitlement";
     private final static String REQUIRED_ENTITLEMENT = "urn:mace:egi.eu:group:eval.c-scale.eu:role=member#aai.egi.eu";
     private final static String REDIRECT_URL = "https://perun.egi.eu/egi/registrar/?vo=eval.c-scale.eu";
+    private final static String IDP_ALIAS = "egicheckin";
 
     private final KeycloakSession session;
 
@@ -54,6 +54,13 @@ public class CustomAuthenticator implements Authenticator {
         }
         
         BrokeredIdentityContext brokerContext = serializedCtx.deserialize(context.getSession(), authSession);
+
+        String idpAlias = brokerContext.getIdp().getConfig().getAlias();
+        if (!IDP_ALIAS.equals(idpAlias)) {
+            context.success();
+            return;
+        }
+
         Map<String, Object> contextData = brokerContext.getContextData();
         if (contextData != null && contextData.containsKey(USER_INFO) && contextData.get(USER_INFO) != null) {
             Object userInfo = contextData.get(USER_INFO);
@@ -62,6 +69,7 @@ public class CustomAuthenticator implements Authenticator {
                 JsonNode entitlementsNode = userInfoNode.get(EDU_PERSON_ENTITLEMENT);
                 if (entitlementsNode != null && entitlementsNode.isArray()) {
                     for (JsonNode entitlement : entitlementsNode) {
+                        log.warn("EGI custom - entitlement: " + entitlement.asText());
                         if (entitlement.asText().equals(REQUIRED_ENTITLEMENT)) {
                             log.debug("EGI custom authenticator - entitlement found, user authenticated.");
                             context.success();