2:32 p.m.
Hello,
The latest release notes talk about multi tenant enhancements like supporting multiple
realms for a single application. Is it possible for a realm to delegate the authentication
to a external identity provider like Ping or Okta (using SAML or OpenID Connect)
providing some kind of identity federation.
One of the requirements for our app is that one or more of out tenants can use their own
AD directory for authenticating users into our service. Eventhough keycloak has support
for LDAP/AD, I'm not sure if customers will open up their directory for direct
connectivity from our cloud service into their on premise AD.
Thanks,
3:47 a.m.
On 8.12.2014 21:32, Bellan Saravanan wrote:
Hello,
The latest release notes talk about multi tenant enhancements like
supporting multiple realms for a single application. Is it possible
for a realm to delegate the authentication to a external identity
provider like Ping or Okta (using SAML or OpenID Connect) providing
some kind of identity federation.
The work on this is already in progress and
hopefully will be in next
version.
Marek
One of the requirements for our app is that one or more of out tenants
can use their own AD directory for authenticating users into our
service. Eventhough keycloak has support for LDAP/AD, I'm not sure if
customers will open up their directory for direct connectivity from
our cloud service into their on premise AD.
Thanks,
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user
3680
days inactive
3684
days old
1 comments
2 participants
participants (2)
-
Bellan Saravanan -
Marek Posolda