Page History

...

1. In Admin Bar → Settings → Directory Manager Settings → Select Plugin, select SAML Directory Manager to start configuring the plugin.
   
   
   
   
2. Copy both values of Entity ID and ACS URL, and temporarily save these values in a convenient place for later use.
   These values are required in order to create a valid client in Keycloak.
   
   Do also ensure User Provisioning Enabled option is checked. This will automatically create user accounts for SSO users that does not exist yet in Joget.
   
   
   
   
3. Next, you'll need the IDP Certificate value from Keycloak in order to finish configuring the SAML Directory Manager plugin. 
   Log into your Keycloak Admin Console, ensure you are currently in myrealm, then go to Realm Settings → Keys, and copy the RS256 Certificate value.
   
   
   
   
   
4. Paste the RS256 Certificate value in the IDP Certificate field.
   
   
   Configure other settings as per your industry requirements. 
   
5. The SAML Directory Manager plugin is a superset of Security Enhanced Directory Manager plugin.
   Hence, the remainder of the plugin configurations (e.g.: Default Directory Password Policy, Notification, etc.) is identical, and you can refer to the Security Enhanced Directory Manager documentation.
   
   
6. Save the plugin configuration.
   From here onwards, the only remaining configurations to perform are on the Keycloak Admin Console side.

4. KeyCloak Configuration

...