Identity Provider

Keycloak

Open-source SSO and identity federation with Keycloak for self-hosted Zero Trust authentication.

Get Started Free Visit Website

Overview

Keycloak is an open-source identity and access management solution widely adopted for self-hosted SSO. OnePAM integrates with Keycloak via SAML and OIDC protocols, enabling organizations to use their existing Keycloak deployment for authentication, user federation, and group-based access control across all managed resources.

Key Features

SAML 2.0 and OIDC SSO integration
User federation from LDAP and Active Directory
Realm-based multi-tenancy support
Group and role synchronization
Custom authentication flows
Self-hosted identity with full data sovereignty

Use Cases

Self-hosted SSO for restricted or regulated environments
Federate LDAP and Active Directory identities for infrastructure access
Enforce custom authentication flows for privileged sessions
Map Keycloak realm roles to OnePAM RBAC policies
Maintain full data sovereignty with on-premise identity

How It Works

Create Client

Register OnePAM as a SAML or OIDC client in your Keycloak realm.

Map Attributes

Configure user attribute and group mappers for OnePAM.

Enable Federation

Set up LDAP or AD user federation in Keycloak for directory sync.

Authenticate

Users sign in via Keycloak to access all OnePAM resources.

Quick Info
Identity Provider
Official Website
5-minute setup
24/7 support available
Need Help?
Documentation
Contact Support
Explore More

Related Integrations

Okta
Identity Provider
Microsoft Entra ID
Identity Provider
Google Workspace
Identity Provider
Auth0
Identity Provider
OneLogin
Identity Provider
Duo Security
Identity Provider
JumpCloud
Identity Provider
SAML 2.0
Identity Provider
OpenID Connect
Identity Provider
Ping Identity
Identity Provider

Ready to Secure Your Access?

Start using Keycloak with OnePAM today. Set up Zero Trust access in minutes with our step-by-step guide.

Start Free Trial Read the Docs