I'm not quite sure what the issue is, because we do specify salted-pbkdf2-hmac-sha256-512 in the import script:
"The encryptionScheme for this plugin is salted-pbkdf2-hmac-sha256-512."
So when you write:
Hello Dan, I found the fix, at least for my test instance, seems that pbkdf2-sha256 maps to salted-pbkdf2-hmac-sha256 rather than salted-pbkdf2-hmac-sha256-512.
Do you mean that pbkdf2-sha256 is the value from Keycloak and it only worked when you used salted-pbkdf2-hmac-sha256 in FusionAuth, or something else?
What version of Keycloak are you migrating from?