Versions Compared

Old Version 6

changes.mady.by.user Mari Fuglem

Saved on

compared with

New Version Current

changes.mady.by.user Mari Fuglem

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Choose a name for your identity provider. This is the user-facing name, so choose a name your users will recognize. This value can be changed later.

...

2. Redirect Mode

Select how the user will be redirected to the identity provider. Available options are: Automatic, instant and No redirect. You may configure more redirect modes after completing the setup.

...

3. Prepare IDP

Copy the Callback URL. You will need this when configuring Keycloak.

...

Configure Keycloak

Status
colourPurple
titleexternal

Info

If you are using SCIM with your provider, make sure to check out the documentation for configuring this before proceeding. It might be that you need to configure this first or at the same time as setting up OIDC.

Sign in to the keycloak Keycloak admin console.

Select the correct realm (we are using example.com) and then Create client.

...

If you intend to use Managed groups (manage your users' group meberships membership in Keycloak) or Auto create groups, you also need a mapper for group claims. If not, you can skip this step.

Create mapper for:

  • Set Name and Friendly Name to Group Set Group attribute name to “Groups”

  • Set Mapper Type to Group Membership

  • Set Token claim Name to Groups

  • Set Full group path to OFF

...

Copy client id from the settings tab and client secret from the Credentials taband go .

...

Go back to the Kantega SSO setup wizard , step 5 Credentials .

...

4. Metadata

Complete the discovery URL by inserting the host url and realm name.

...

...

5. Scopes

These are the scopes we were able to fetch from the metadata. You can add scope values from a list, start typing to add your own or unselect them. A minimum of one scope value is required.

...

...

6. Credentials

In this step, we will insert client credentials from Keycloak. The client ID is found in the Setting tab, while the secret is found in the Credentials tab in Keycloak.

Paste these values into the respective fields.

...

...

7. Summary

Confirm that everything looks good and submit your setup (smile)

...

Test

Test that logging in login with Keycloak works as expected. This will help identify if there are any issues with the configuration. Follow the steps to perform the login test.

...