Create a user in Keycloak
Manually create users if you work in local-only mode or without SSO-only configuration
읽는 시간 2분최근 업데이트: 4일 전
After you have set up single sign-on (SSO) for the realm, Keycloak automatically provisions an account for each user on their first sign-in via the enterprise identity provider (IdP). On subsequent sign-ins, Keycloak updates the user properties based on the information from the IdP. Nevertheless, you might need to create user accounts in Keycloak in these cases:
- You use Keycloak in local-only mode, that is, with only local users.
- You haven't applied SSO-only configuration. Read more about configuring the user experience.
- In the Keycloak admin console, switch to the unity realm.
- Go to Manage > Users.
- Select Add user.
- Provide these settings:
Field | Description |
|---|---|
| User name | A unique name for the user. The recommended practice is the email address. |
| The user's email address. | |
| First name | The user's first name. |
| Last name | The user's last name. |
| Full name | The user's full name, for example, |
- On the Credentials tab, set a password so that the user can sign in.
- Instruct the user to sign in for the first time. Refer the note hereinafter.
- Grant access to an organization and to a project.
참고
The system doesn't add new users to the Asset Manager organization when creating them in Keycloak, but only during their first sign-in, with the User user type. In other words, before new users can appear as organization members in Unity Asset Manager, they must sign in first.
- This process happens seamlessly for SSO users within the same first sign-in flow via the enterprise IdP: they are automatically provisioned in Keycloak and then added to the organization right after that.
- Local users need to sign in first to be added to the organization members. Only then administrators can assign additional user types and roles to them.