External service authentication

tmanninger · January 21, 2020, 2:45pm

Hi,

i have a keycloak server in my local network, which is only reachable from my local network and i also have an external service, which cannot reach my local keycloak server, but i need to enable oidc authentication for this service.

At the keycloak clients configuration, i found the access-type option “public”. If i unterstand it correctly, this should be possible with this option?

I also tried it with keycloak-gatekeeper, but gatekeeper needs an secret key (which is not available in the public mode).

What’s the correct configuration?

Thanks for help!

g0ha · January 22, 2020, 6:41am

I’m not shure, but i think you shoud configure port forward for accessing to keycloak instance via external service. I don’t think, that “public” switch can resolve your issue. This is just network access problem.

tmanninger · January 22, 2020, 7:31am

Hello g0ha,

For security reasons i want to avoid, that my keycloak server is public accessable.

Is there no other way?

Best regards,
Thomas

g0ha · January 22, 2020, 9:07am

If external service have “white” ip address, you can make access only for this IP (Via firewall on your gate)

Topic		Replies	Views
Help with external auth (Azure AD via OIDC) and limited password access	0	235	April 24, 2023
Using Keycloak with several OIDC providers and several authorization services Getting advice authentication , ldap , oidc	0	378	October 6, 2021
External Idp integration via script Getting advice authentication	15	1209	March 23, 2021
Mapping of local keyloak user to external userId via identity broker - custom process	5	1446	January 5, 2022
Can KeyCloak be used for managing permissons of external OIDC users? Getting advice	0	360	August 28, 2020

External service authentication

Related Topics