[mitaka][keystone] Authentication over keycloak server possible?

Nikolla, Kristi knikolla at bu.edu
Mon Dec 2 15:26:48 UTC 2019

Hi Michael,

It is possible to use Keycloak as an identity provider and federate over SAML 2.0 or OpenID Connect. Please see this documentation for more details https://docs.openstack.org/keystone/latest/admin/federation/configure_federation.html#keystone-as-a-service-provider-sp

There are a few improvements in later versions with regards to federation, so I would advise upgrading if possible. Most importantly, Mitaka has been End Of Life, and hence unsupported since 2017-04-10. But outside of that, you’re good to go.


From: Michael Stang <michael.stang at dhbw-mannheim.de>
Date: Friday, November 29, 2019 at 9:25 AM
To: "openstack-discuss at lists.openstack.org" <openstack-discuss at lists.openstack.org>
Subject: [mitaka][keystone] Authentication over keycloak server possible?


we have an OpenStack Mitaka installation running (yes I know it's pretty old ;-) ) at our lab and would like to use the keycloak-server from the central IT for authentication.

So I would like to know if it is already possible in mitaka to use this external keycloak server or if this only possible in a later OpenStack version? Maybe anyone know and if yes is there any documentation how to do it? Was searching for it but found not much about it by now...

Thanks :)

Kind regards


Michael Stang
Laboringenieur, Dipl. Inf. (FH)

Duale Hochschule Baden-Württemberg Mannheim
Baden-Wuerttemberg Cooperative State University Mannheim
ZeMath Zentrum für mathematisch-naturwissenschaftliches Basiswissen
Fachbereich Informatik, Fakultät Technik
Coblitzallee 1-9
68163 Mannheim

michael.stang at dhbw-mannheim.de
<mailto:michael.stang at dhbw-mannheim.de>http://www.mannheim.dhbw.de<http://www.dhbw-mannheim.de/>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20191202/c6c07a21/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 28324 bytes
Desc: image001.jpg
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20191202/c6c07a21/attachment-0001.jpg>

More information about the openstack-discuss mailing list