Keycloak is an Identity Management service that implements an Identity Provider (IdP),
using protocols such as SAML. Logilica's SSO supports Keycloak's SAML SSO.
To enable Keycloak SAML SSO with Logilica, please complete the following:
Match Client ID and Entity ID
In the Logilica SSO configuration, ensure the Entity ID field has the same value as Keycloak's Client ID. The client type should be SAML.
Keycloak Realm Client settings
Logilica Organisation Single Sign On settings
Set Valid Redirect URIs
In Keycloak, navigate to the Client's Settings page.
Under Access Settings, for Valid Redirect URIs, please add 'https://logilica.io/*'. \
Keycloak Client Access settings
Turn off Signing Keys
From the Client's settings page, select the Keys tab.
In the Signing KeysConfiguration, turn off Client signature required.
Keycloak Client Keys settings
Fill in Entry URL and Certificate fields
The Entry URL and Certificate field can be obtained from the Realm's SAML 2.0 Identity Provider Metadata document.
Keycloak RealmSAML 2.0 Identity Provider Metadata
Please ensure you have at least one active user in the Realm with a verified email.
With this, Keycloak's SAML SSO has been set up with Logilica. For further details on logging in with SSO, please navigate to the SSO Integrationpage.
