Keycloak with SAS PCE

This section describes the Keyclock with SafeNet Authentication Service Private Cloud Edition (SAS PCE) integration with the SafeNet IDPrime Virtual (IDPV) using Safenet Agent for Keycloak v1.2.0.

This integration document focuses on a specific use case where the user database is not present on Keycloak but is syncing with SAS PCE. So, the SafeNet Keycloak Agent syncs the users dynamically from the SAS PCE database to Keycloak during the authentication request, and there is no need for an additional user database on the Keycloak side. With this integration, SAS PCE provides multi-factor authentication in the context of authentication requests received by the Keycloak IDP from the IDPV client.

For more information about the SafeNet Keycloak Agent, refer to SafeNet Agent for Keycloak Administration Guide.

Steps for Integration

Perform the following steps for the integration:

• Requirements

• Install Safenet Agent for Keycloak

• Realm Configuration

• Configure SafeNet Authentication Flows

• Add OIDC Client on Keycloak Server

• Keycloak User Federation

• Set up the SAS PCE LDAP

• SafeNet IDPrime Virtual Setup

You can verify the successful integration using the steps mentioned in Verify Integration section.