par janua | Mar 20, 2019 | Gestion des Identités, Open Source, SSO
In this article are exposed some of the key concepts protecting a Keycloak RedHat SSO with a reverse proxy in production. Protecting the keycloak server is crucial. Keycloak server should not be visible from the outside 1) Why adding a reverse proxy The goal of the...
par janua | Fév 25, 2019 | Communauté, Open Source, SSO
In this article, Janua’s CTO shares tips and tricks about understanding Keycloak user Federation 1 Understanding Keycloak user Federation 1.1 Overview Keycloak comes up with a user storage SPI. By default Keycloak comes with 3 different user storage federation...
par janua | Fév 8, 2019 | Gestion des Identités, LDAP, Open Source
In this article Janua’s CTO share how to configuring DS389 aka RedHat DS as 2MMR Step 1 – enable Change log (Master M1) Step2 – Enable Replica (Master M1) Step3 – Create replication Manager (Master M1) ldapadd -h localhost -p 2389 -D « Cn=Directory Manager » -w...
par janua | Fév 8, 2019 | Gestion des Identités, Open Source
In this article Janua’s CTO will share how to configuring SSL/TLS with DS389 aka RedHat DS Step 1 – Create Keystore Requirement Position yourself in the directory Cd /etc/dirsrv/slapd-myserver-5389 1.1) Creation of password files (pin.txt) pin.txt (used by...
par janua | Nov 26, 2018 | Open Source, SSO
In this article, we will try to synthesize about Multi Factor Authentication with Keycloak and RedHat SSO. Presentation MFA stands For multi-factor authentication. Usual authentication with username/password is one of the weakest authentication scheme possible, which...
par janua | Juin 20, 2018 | Gestion des Identités, Open Source
This paper describes how to leverage Keycloak/RH-SSO in a microservice SAAS Architecture. 1) SAAS: Software as a Service with KeyCloak All Saas Applications are registered within keycloak as client service using confidential mode. A Saas application can be...
