Hi,
What are the purpose of the aes-generated and the hmac-generated realm keys that can be listed in the realm settings keys tab ?
Should I periodically rotate those keys as well as the rsa key pair ?
Regards,
@fidgi I’d suggest to take a look at this part of the documentation https://www.keycloak.org/docs/latest/server_admin/index.html#realm_keys. It may clarify a lot of questions you have around this.
Hi,
This is the thing I did before posting my.question. Still I don’t understand why there are an aes and hmac generated keys since the documentation states : "Keycloak currently only supports RSA signatures " ?