# Keycloak Configuration
This session shows how to register a client on the Keycloak Server. When registering the client, we are getting the following four values that are needed for later configuration in Datawiza Cloud Management Console (DCMC):
- Keycloak Server
TheKeycloak Server
is the Keycloak server address. Notice that we use theIP Address
instead oflocalhost
forKeycloak Server
while we start DAB with docker. For the author, it ishttp://172.16.181.1:8080
. - Realm Name
- Client ID
- Client Secret
# Prerequisite
We assume that you already have a Keycloak Server running on http://localhost:8080
.
# Add New realm
Create a new realm.
Enter the realm name, which is the
Realm Name
we need, and clickCreate
.
# Create and Configure your Keycloak Client
Create a Client.
SelectClients
tab and clickCreate
:
Enter the client name, which is theClient ID
we need, and clickSave
.
Configure the client.
Selectconfidential
inAccess Type
:
OpenAuthorization Enabled
andService Accounts Enabled
should be opened automatically:
Enter theValid Redirect URIs
, which should be the address of DAB, e.g.,http://localhost:9772/*
, then clickSave
:
Now, theCredentials
tab should be shown. Select it and make a copy ofSecret
asClient Secret
:
# Create Groups and Users
Create groups.
ChooseGroups
and clickNew
:
Enter the group name and clickSave
:Create Users.
ChooseUsers
and clickAdd user
:
Enter the basic information and clickSave
:
SelectCredentials
tab and enter the password, close theTemporary
for test purpose. ClickSet Password
:
Add Client Roles to get user profile.(Optional).
SelectRole Mappings
and chooserealm-management
inClient Roles
:
Addview-users
:
Assign user to group.
SelectGroups
tab, choose the group we created and clickJoin
:
# Summary
We have shown how to register a client
on Keycloak. Please make sure to save the following four values for later setting in Datawiza Cloud Management Console.
- Keycloak Server
- Realm Name
- Client Id
- Client Secret