The Redstor Storage Platform allows your organisation to replace internal single-factor authentication (i.e. username and password) with single sign-on (SSO) through Keycloak. Read more here.
To set up identity management through Keycloak, follow the steps below. Note that this can only be performed by tenant owners.
1. On the Control Centre home page, click on the gear (Settings) icon at the top right.
2. Select Other.
3. You will be prompted for the following information:
To obtain this information:
-
- Log into the Keycloak Admin Console.
- In the Master drop-down menu, click Add Realm. Enter a name and click Create.
- (optional) Configure the Realm's Token settings (token expiry, timeouts, etc.).
- Go to Clients > Add Client. Copy and paste the Client ID you create here into the Control Centre form. Select openid-connect as the Client Protocol and click Save.
- In the Settings tab, choose confidential as the Access Type to expose the Client Secret in a new Client > Credentials tab. Copy and paste this Client Secret into the Control Centre form.
- Enable Standard Flow and disable Implicit Flow.
- For Valid Redirect URIs, use the URI provided above the setup form in the Control Centre.
-
-
Depending on which Redstor platform your use, this will be one of the following:
Note: You will need to add a second URI for the Redstor web app if you make use of it.
- UK
- https://sp.pro.redstor.com/auth/token
- https://us.pro.redstor.com/auth/token
- https://uk.pro.redstor.com/auth/token
- https://api.pro.redstor.com/auth/token (web app)
- ZA & IS
- https://zaapi.pro.redstor.com/auth/token
- https://issp.pro.redstor.com/auth/token
- https://zasp.pro.redstor.com/auth/token (web app)
- UK
-
-
- Use https://{KEYCLOAK_DOMAIN}/auth/realms/{REALM_ID}/.well-known/openid-configuration as the Discovery URI in the Control Centre form.
4. To complete the setup process in the Control Centre, leave the Extra Options field blank and click Submit.
Comments
0 comments
Please sign in to leave a comment.