Help about keycloak configuration

mostafadehghad6 · ‎01-03-2025

I installed the keycloak extension but I don't know how to configure it. Can you help me?

Alan_Chan · ‎01-12-2025

I am having the same problem. The Keycloak server is on ECS and uses https://:8443. I cannot use this app to get logs from my Keycloak server.

marnall · ‎01-03-2025

According to the readme.md file, to configure it:

On your Splunk instance navigate to `/app/KeycloakAPI_nxtp` to perform the configuration.

I would assume this takes place after you install the app on your instance. Then you should be able to go to

https://yoursplunk:8000/<locale>/app/KeycloakAPI_nxtp

And there may be a setup page.

kiran_panchavat · ‎01-03-2025

@mostafadehghad6

The Keycloak integration process is straightforward, it seems. You can follow these steps:

1. Open the add-on, navigate to the configuration tab, click "Add," and provide the necessary details, such as the client ID and secret key.

2. Create an input based on your specific requirements.

3. Ensure that the firewall rules allow communication between Splunk and Keycloak.

I hope this helps, if any reply helps you, you could add your upvote/karma points to that reply, thanks.

Did this help? If yes, please consider giving kudos, marking it as the solution, or commenting for clarification — your feedback keeps the community going!

Help about keycloak configuration

configuration

Developer Spotlight with Brett Adams

Index This | What can you do to make 55,555 equal 500?

Say goodbye to manually analyzing phishing and malware threats with Splunk Attack ...