Keycloak fails on Istio MTLS Strict Mode

Hi , we have setup an istio service mesh with sidecar injection enabled for our namespace
Keycloak is deployed in a clustered mode in the same namespace as a stateful set, referreing to the codecentric helm charts

keycloak-http & keycloak-headless services are in place
We have created a virtual service for keycloak-http service, which is pointing to the gateway created for a wildcard host with istio-ingressgateway as selector

When MTLS is in strict mode, upon admin login for the front end, keycloak fails with 302 ERR_TOO_MANY_REDIRECTS

Need to understand if we are missing anything setup wise.