Keycloak single-sign-on

Hi all,

We’re using Keycloak for our self-developed micro-service-application and it works.
Now we want to use SSO (single-sign-on) with this application with an external AD (active-directory).

It is possible? Do you know how to configure it, can you please give me some advices?

Best regards,
Marco

Basically you can use AD as LDAP in keycloak so that you can leverage existing accounts and Passwords if that’s what you look for, it shout just be a few minutes to set up.
Alternatively keycloak directly can leverage ad and Kerberos, this would allow you to use a desktop login and leverage that for the keycloak session.
I haven’t done this myself yet…

See: