-
Keycloak is a "diplomat" for web-based login procedures, such as those used for cloud services and web applications. As a so-called login broker, Keycloak can provide users and groups from external directories (e.g. Microsoft Active Directory) and implement single sign-on and multi-factor authentication on various web applications. This course explains the concepts of Web SSO and Keycloak, covers installation and configuration and shows examples of the integration of services and applications.</p
This hands-on training is given by an experienced trainer who specializes in Linux/Open Source training, consulting & support.
-
Course Contents
-
- Baiscs of SSO via HTTP(S)
- Basics of Keycloak
- Concepts of Keycloak
- Installating Keycloak
- Integrating Keycloak
-
Knowledge Prerequisites
-
You have basic knowledge of Linux administration. Knowledge of the function of web servers and web applications (HTTP, HTML, cookies, etc.) is also a prerequisite for classifying the examples.
| Grundlagen von SSO via HTTP(S) |
| Authentication, Authorization, Accounting (”Triple-A-Prinzip“) |
| Terminologie: Identity- und Service Provider, Tokens und Claims |
| Relevante Grundlagen von HTTP(S) und TLS |
| OAuth2, OpenID Connect und JWT (optional: SAML) |
| Grundlagen von Keycloak |
| Abgrenzung zu Red Hat’s SSO und vergleichbaren Produkten |
| Architektur von Keycloak (Standalone vs. Cluster vs. Domain) |
| Aufbau einer Keycloak-Instanz (Deployment, Konfiguration) |
| Ports, CLI, Management-, Benutzer- und Admin-GUI |
| Keystores, Keytool |
| Konzepte von Keycloak |
| Realms, Endpoints |
| Users, Groups, User Federation, Identity Providers |
| Clients, Roles, Mappers, Client Scopes und Evaluation |
| Authentication und Flows |
| Installation von Keycloak |
| Cluster mit Infinispan |
| Einrichtung einer relationalen (gemeinsamen) Datenbank |
| Initiale Konfiguration (XML und CLI |
| Integration als Systemdienst |
| Upgrades, Backup und Recovery |
| Integration von Keycloak |
| Betrieb hinter Reverse Proxy bzw. Loadbalancer |
| Einbindung von User Federation am Beispiel LDAP/AD |
| Anbindung einerWeb-Anwendung |
| Einbindung eines externen IdP |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Hybrid training
- Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.-
Keycloak is a "diplomat" for web-based login procedures, such as those used for cloud services and web applications. As a so-called login broker, Keycloak can provide users and groups from external directories (e.g. Microsoft Active Directory) and implement single sign-on and multi-factor authentication on various web applications. This course explains the concepts of Web SSO and Keycloak, covers installation and configuration and shows examples of the integration of services and applications.</p
This hands-on training is given by an experienced trainer who specializes in Linux/Open Source training, consulting & support.
-
Course Contents
-
- Baiscs of SSO via HTTP(S)
- Basics of Keycloak
- Concepts of Keycloak
- Installating Keycloak
- Integrating Keycloak
-
Knowledge Prerequisites
-
You have basic knowledge of Linux administration. Knowledge of the function of web servers and web applications (HTTP, HTML, cookies, etc.) is also a prerequisite for classifying the examples.
| Grundlagen von SSO via HTTP(S) |
| Authentication, Authorization, Accounting (”Triple-A-Prinzip“) |
| Terminologie: Identity- und Service Provider, Tokens und Claims |
| Relevante Grundlagen von HTTP(S) und TLS |
| OAuth2, OpenID Connect und JWT (optional: SAML) |
| Grundlagen von Keycloak |
| Abgrenzung zu Red Hat’s SSO und vergleichbaren Produkten |
| Architektur von Keycloak (Standalone vs. Cluster vs. Domain) |
| Aufbau einer Keycloak-Instanz (Deployment, Konfiguration) |
| Ports, CLI, Management-, Benutzer- und Admin-GUI |
| Keystores, Keytool |
| Konzepte von Keycloak |
| Realms, Endpoints |
| Users, Groups, User Federation, Identity Providers |
| Clients, Roles, Mappers, Client Scopes und Evaluation |
| Authentication und Flows |
| Installation von Keycloak |
| Cluster mit Infinispan |
| Einrichtung einer relationalen (gemeinsamen) Datenbank |
| Initiale Konfiguration (XML und CLI |
| Integration als Systemdienst |
| Upgrades, Backup und Recovery |
| Integration von Keycloak |
| Betrieb hinter Reverse Proxy bzw. Loadbalancer |
| Einbindung von User Federation am Beispiel LDAP/AD |
| Anbindung einerWeb-Anwendung |
| Einbindung eines externen IdP |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Hybrid training
- Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.
Hybrid Training
Trainer language German