I would like to configure KeyCloak to authenticate some application based on the Client Secret given in AD without standard user/password way but I cannot find any information on this.
Is it possible? How can I achieve that?
Yes, you can implement using the service account in keycloak. You create a new client and and change its type to service account with assigning management dedicated role to the client. Before this AD should provide restapi to get user details otherwise it is not possible. May be this link will help you.
1 Like
Yes, everything looks logical and clear but is there a way to import secret and id of client application registered in AD together with users? How the client secret and id set by AD impact Keycloak?