Your suggested change has been received. Thank you.

close
Thales Logo

All

  • All
  • CipherTrust Manager
  • CipherTrust Application Data Protection (CADP)
  • CipherTrust Application Key Management (CAKM)
  • CipherTrust Batch Data Transformation (BDT)
  • CipherTrust Cloud Key Management (CCKM)
  • CipherTrust Data Discovery and Classification (DDC)
  • CipherTrust Data Protection Gateway (DPG)
  • CipherTrust Database Protection (CDP)
  • CipherTrust Intelligent Protection (CIP)
  • CipherTrust Integrations
  • CipherTrust Migrations
  • CipherTrust RESTful Data Protection (CRDP)
  • CipherTrust Transparent Encryption (CTE)
  • CipherTrust Transparent Encryption Userspace (CTE-U)
  • CipherTrust Secrets Management (CSM)
  • CipherTrust Vaulted Tokenization (CT-V)
  • CipherTrust Vaultless Tokenization (CT-VL)
  • CTE-Linux
  • CTE-Windows
  • CTE-AIX
  • CTE-K8s
  • CTE-U
  • Crypto Command Center
  • Data Protection on Demand
  • Luna Cloud HSM
  • Luna Network HSM
  • Luna PCIe HSM
  • Luna USB HSM
  • OneWelcome Identity Platform
  • ProtectApp LUKS
  • ProtectServer 2 HSM
  • ProtectServer 3 HSM
  • SafeNet Trusted Access (STA)
  • SafeNet MobilePASS+
  • SafeNet MobilePASS+ for Android
  • SafeNet MobilePASS+ for Chrome
  • SafeNet MobilePASS+ for macOS
  • SafeNet MobilePASS+ for iOS
  • SafeNet MobilePASS+ for WatchOS
  • SafeNet MobilePASS+ for Windows
  • SafeNet Synchronization Agent
  • SafeNet Logging Agent
  • SafeNet Agent for FreeRADIUS
  • SafeNet Agent for NPS
  • SafeNet Agent for Windows Logon
  • SafeNet Authentication Service Private Cloud Edition (SAS PCE)
  • SafeNet Remote Logging Agent
  • SafeNet Keycloak Agent
  • SafeNet IDPrime Virtual (IDPV)
  • SafeNet FIDO Key Manager
  • SafeNet FIDO Key Manager for Android
  • SafeNet FIDO Key Manager for iOS
  • SafeNet FIDO Key Manager for Windows
back

Keycloak with SAS PCE

Overview

search
printpdf paneldownload

Overview

This section describes the requirements for the integration and the setup of the keycloak server.

copy link to clipboardRequirements

The following prerequisites are required to complete the integration:

  • SafeNetKeycloakAgentpackage.zip v1.2.0.
  • Running instance of SAS PCE server v3.13.xx.
  • Running instance of for Keycloak container v15.0.2.
  • Running instance of IDPV Server v2.x.
  • IDPV Client 2.x installed on Windows 10.
  • Microsoft Active Directory Windows 2016 for synchronizing user identities to SAS PCE database (Optional).
note

Note

You can use any other supported user data store. We use Microsoft AD Windows 2016 for the integration.

copy link to clipboardPrerequisites to Set up the Keycloak Server

To install a Keycloak server, refer to Server Installation and Configuration Guide. For this integration, we run a Keycloak server in standalone mode on a Windows 2016 server.

Before configuring the Keycloak server, ensure that:

  • An IP address is attached to the public interface. (For more information about public interface, refer to Keycloak Documentation).

  • A valid SSL certificate is bound to the public interface so IDPV client trusts the keycloak server. (For information on SSL certificate, refer to Keycloak Documentation).

  • Admin account access is required to create realm and install SafeNet Agent for Keycloak Server, refer to Creating the first administrator.

To configure the Keycloak server, install the SafeNet Agent for Keycloak v1.2.0 on this server so that it can communicate with SAS PCE for authenticating users.

On this page