Keycloak Setup
This guide provides instructions for configuring Keycloak after deploying Observo Manager.
Prerequisites
Observo Manager successfully deployed via Helm
Access to the Observo UI Endpoint
Keycloak credentials from helm values file
Access Keycloak Admin Console
Navigate to:
<OBSERVO_URL>/observo-authLog in with admin credentials configured in keycloak section of manager helm values file:
auth: adminUser: admin adminPassword: 1234
Client Configuration
Observo requires two OpenID Connect clients in keycloak:
observo-ui: For user interface accessobservo-client: For site communication
Configure observo-ui Client
In Keycloak admin console, go to
ClientsClick
Import Client
Upload the observo-ui client configuration
Configure observo-client Client
In Keycloak admin console, go to
ClientsClick
Import ClientUpload the observo-client configuration
Configure Service Account Roles:
Navigate to
Clients→observo-client→Service Account RolesClick
Assign RoleSearch for and select the
adminroleClick
Assign
Realm Configuration
Theme Setup
Navigate to
Realm Settings→ThemesSet
Login ThemetoObservoClick
Save
Session Configuration
Navigate to
Realm Settings→SessionsSet the following values:
SSO Session Idle: 10 daysSSO Session Max: 10 days
Click
Save
Token Configuration
Navigate to
Realm Settings→TokensSet
Access Token Lifespanto 10 daysClick
Save
Admin User Setup
Create the Observo admin user:
Navigate to
UsersClick
Add userConfigure user details:
Username:
observoadminEmail:
[email protected]Email Verified:
ON
Click
Save
Configure Admin User
Set Password:
Go to
CredentialstabSet a password for the user
Disable
Temporarypassword if needed
Assign Admin Role:
Go to
Role MappingtabClick
Assign RoleSearch for and select
adminroleClick
Assign
Verification
Log out of the admin console
Navigate to Observo UI
Log in using:
Username:
observoadminPassword: [your set password]
Last updated
Was this helpful?