Hello everybody,
I have a Keycloak setup with two clustered servers and one NGINX load balancer in front of them.
Currently, I’m trying to configure Kerberos (Active Directory), but I’m not really sure how to do it in a clustered setup. Do I have to create a service user and a keytab for each server? If yes, what should the server principal in Keycloak be?
Maybe somebody has already done what I’m trying to do. 
Kind regards,
itobi1