What is Keycloak?
Keycloak is the open-source identity and access management solution. Add authentication to applications and secure services with minimum effort β no need to store or authenticate users yourself. Users authenticate with Keycloak rather than individual applications offering single-sign-on: once logged in, users access all applications without logging in again. Single-sign-out means logout once to be logged out everywhere. Features include social login (easy to add via admin console), identity brokering with OpenID Connect or SAML 2.0, LDAP/Active Directory federation, admin console for central management, and fine-grained authorization services. A CNCF incubation project.
Key Features
- βSingle-Sign-On (SSO)
- βSingle-Sign-Out
- βSocial login
- βIdentity Brokering
- βLDAP/Active Directory federation
- βOpenID Connect
- βOAuth 2.0
- βSAML 2.0
- βAdmin Console
- βAccount Management Console
- βTwo-factor authentication
- βFine-grained authorization
π Privacy & Data Protection
Keycloak is fully open-source and self-hosted β all identity data stays on your infrastructure. No user data leaves your servers. A CNCF incubation project with transparent development. For organizations wanting Auth0/Okta alternatives with complete control over identity management, Keycloak delivers enterprise-grade IAM.
Best For
π° Pricing
Keycloak is completely free and open-source. Red Hat offers commercial support through Red Hat Single Sign-On.
Ready to try Keycloak?
Join thousands of users who have switched to this European alternative.
Get Started with Keycloak β