WIP!
SSL Keycloak is an identity provider for SSL users in the eHealth infrastuctureinfrastructure.
Each SSL Organization in the eHealth infrastucture infrastructure will have a realm
in SSL Keycloak. Administrators can manage users on these realms.
Table of Contents |
---|
Managing Users
This section is a guide for administrators. In this guide we will use Trifork as an example SSL Organization.
...
To log in to the administration console go to ssl-login.<base-url>/auth/authadmin/trifork/adminconsole
. Note that the name of the realm is part of the URL. Enter the credentials and click Log in.
...
Now we need to configure the privileges of the user. Click on the Attributes tab.
...
xAdd an attribute with key dk:gov:saml:attribute:Privileges_intermediate
and value is a Base 64 encoded OIO Basic Privilege Profile XML document. Click Add next to the attribute line, and then click Save.
...
That’s it. The user is now fully configured, and can be found on the Users page.
...
Update Password
When the administrator has added a user, and performed the credential reset step, the user receives an email. The user must then follow the link before it expires.
...
Click on the 'Click here to proceed' link.
...
Enter and confirm a new password and click Submit.
...
The user has now reset their password, and are now able to login.
...
User login
To log in as a SSL user in the eHealth infrastructure, one must use the ssl
-realm on FUT Keycloak. There will be an option for each SSL Organization in the eHealth infrastructure. Click on the desired SSL Organization.
...
Fut Keycloak redirects to SSL Keycloak where the user can enter their credentials to log in.
...