Access the Keycloak admin console
Manage organization, identity, and projects from Keycloak
Read time 1 minuteLast updated 5 days ago
About Keycloak
Unity Virtual Private Cloud includes an identity provider and broker component based on Keycloak. Keycloak includes these major capabilities:- Authentication and authorization
- Storage of information about entities that is required for access control, for example, for users, service accounts, the organization, and projects
Access Keycloak
From Amazon Web Services (AWS)
To access the Keycloak admin console from a browser, enter a URL in this format:The default user is admin. To retrieve the password, run this command:https://<domain_name>/admin/master/console/
kubectl get -n asset-solutions secret keycloak -o jsonpath="{.data.admin-password}" | base64 --decode
From Microsoft Azure
All Keycloak settings and objects that are related to Unity Virtual Private Cloud are stored in the predefined unity realm. After you have opened the admin console, first go this realm. To access the Keycloak admin console from a browser, enter a URL in this format:You must first initialize the AKS cluster credentials on the administrator's machine. These credentials are required later. Read more about connecting to a cluster in the Azure documentation. The initial administrator username ishttps://<domain_name>/admin/master/console/
adminkc-admin-password- Grant the Key Vault Administrator role to themselves, because the Owner role doesn't provide access to the Key Vault data plane
- Temporarily allow access to the key vault over the internet By default, public access for this key vault is made unavailable. The recommended practice is to restrict this access to the IPs of specific administrators, in the key vault firewall settings, and, if possible, permanently.
-
Change the password for the user. The recommended practice is to keep the password up-to-date in the key vault.
admin - Add administrative users.