A. Active directory user import setup
Create an user federation by selecting “LDAP” from the dropdown at the top right corner
2. Fill the following fields
3. Sync, remove and unlink users by cliking following buttons.
Findings:
a. Couldn’t found any way of setting up AD groups with Asta access
b. By default it gets default-roles-archive-manager, offline_access, uma_authorization
c. It’s possible to connect with multiple AD instances by creating multiple user federation.
B. Azure active directory single sign on setup
Create a client secret by clicking “New client secret” and persist secret value for later use
Select identity providers from left menu. Then select OpenId Connect v1.0 from top right corner drop-down list
Cope redirect Uri and paste it following the step 4.
4. Paste redirect uri from step 3 following below image
5. Add application directory client id from azure to keycloak to import azure settings then click import
6. Add application client id in “Client ID”, add client secret in “Client secret” and select client secret sent as basic auth in “Client Authentication”
7. Now you can get an option to login by azure active directory user.