Configure Keycloak


Keycloak, is an open source Identity and Access Management solution aimed at modern applications and services. It can be used as an authentication service instead of keystone.


Keycloak must be enabled explicitly in Vitrage configuration file The default authentication mode is keystone:

auth_mode = keycloak

auth_url = http://<Keycloak-server-host>:<Keycloak-server-port>/auth
insecure = False
  • auth_url url of the Keycloak server defaults to

  • insecure If True, SSL/TLS certificate verification is disabled defaults to False