User Tools

Site Tools


hosts:virtual_machines:enclave:keycloak

Keycloak

Name Keycloak
Ports 8443 (tcp)
View in NetBox.

Provides OpenID (Single Sign-On). User information is federated from LDAP, and password authentication is done through Kerberos.

Because it misbehaves otherwise, this uses SSL with a certificate issued by Step CA.

Data directories

  • /var/lib/postgresql/

Configuration locations

Handled declaratively through Nix.

Clients, Realms & Providers configured using the administration UI.

hosts/virtual_machines/enclave/keycloak.txt · Last modified: 2024/10/02 11:49 by merlin