配置Keycloak (SAML)
可用版本 v2.1.0
If your organization uses Keycloak Identity Provider (IdP) for user authentication, you can configure Rancher to allow your users to log in using their IdP credentials.
Prerequisites:You must have a Keycloak IdP Server configured.
Export a metadata.xml file from your IdP Server. For more information, see the Keycloak documentation to create a SAML Client, under Installation tab, you can find your metadata.
From the Global view, select Security > Authentication from the main menu.
Select Keycloak.
Complete the Configure Keycloak Account form. Keycloak IdP lets you specify what data store you want to use. You can either add a database or use an existing LDAP server. For example, if you select your Active Directory (AD) server, the examples below describe how you can map AD attributes to fields within Rancher.
FieldDescriptionDisplay Name FieldThe AD