I had a thread on this list with I think the same question. You can find it here:

http://keycloak-user.88327.x6.nabble.com/keycloak-user-One-client-application-users-in-many-organizations-td115.html


Pls help.


Regards,
Subrahmanyam




Hi,
    Here are few questions regarding Groups and multi tenancy approaches.
  1.  Assuming a scenario where one client (application) in keycloak to be accessible by couple of customers (customer 1 and customer 2). Then what is the possible approaches.
    2. Can I have one realm per customer, in this case the client has to be duplicated against per realm and Keycloak.json file has to be updated every time when a new customer comes in.
    3. If we have one realm and a group per customer, then I should be able to restrict the access (user management) per group.


Please suggest on this.


Regards,
Subrahmanyam.



Email had 1 attachment:


--
  Aikeaguinea
  aikeaguinea@xsmail.com


-- 
http://www.fastmail.com - Does exactly what it says on the tin