Hi all, noob here.
I’ve set up and am running keycloak as my login service for internal web apps at my company (websites facing the www).
I’m using the admin interface myself, but I’ve been lead to believe there is another web interface for managers to add/manage users, with fewer privileges than the admin interface (no realm/setup)
I would like to give the local managers at my company access to manage their own employees.
Is there such a thing?
I’m running 9.0.2 in a Docker container.
I’ve tried to run with the flag -bmanagement as suggested in the link below, but I get nothing at localhost:9990.
No, just the Administration Console, however, Users within a realm can be granted realm management permissions by assigning specific user role mappings.
Dedicated Realm Admin Consoles
Each realm has a dedicated Admin Console that can be accessed by going to the url /auth/admin/{realm-name}/console . Users within that realm can be granted realm management permissions by assigning specific user role mappings.
Sometimes roles like manage-realm or manage-users are too coarse grained and you want to create restricted admin accounts that have more fine grained permissions.
Fine Grain Admin Permissions is Technology Preview and is not fully supported. This feature is disabled by default.