Skip to content

Secure Keycloak ???? Für aktuelles Produkt umarbeiten ????

For security reasons, SEAL Systems strongly recommends changing the password of the pre-configured Keycloak user and configuring the TLS encryption. This is also one step to get rid off the annoying certificate warnings in the browser.

Change the Password of admin

After the standard installation, the following Keycloak administrator user is available:

Username: admin

Password: SealAdmin1

This is how you change the password of this user:

  1. In your Web browser, open the Keycloak user interface, https://localhost:32769.

  2. Open the Administration Console.

  3. Log on with the pre-configured user admin and password SealAdmin1.

  4. Change the password in Manage Account and memorize the password.

Configure the TLS Encryption

  1. Get a certificate as Java keystore, see the Requirement.

  2. Copy the Java keystore into the JBoss configuration directory:

    C:\ProgramData\SEAL Systems\infrastructure\data\seal-keycloak\configuration.

  3. In the security-realms section of C:ProgramData\SEAL Systems\infrastructure\data\seal-keycloak\configuration\standalone.xml, insert the following lines:

    <security-realm name="SslRealm">
   <server-identities>
       <ssl>
           <keystore path="<yourdomain.com.jks>" relative-to="jboss.server.config.dir" keystore-password="<keystore_password>"/>
       </ssl>
   </server-identities>
</security-realm>

  4. In C:\ProgramData\SEAL Systems\infrastructure\data\seal-keycloak\configuration\standalone.xml, replace the existent https-listener line by the following line:

    <https-listener name="default-ssl" socket-binding="https" security-realm="SslRealm"/>

  5. Restart the seal-keycloak service.

Next Step

Continue with: Secure Consul

Back to top