To establish a link with an identity provider other than AD FS, you must run
the csembeddedkeycloak command to enable the linking
function.
When you run the csembeddedkeycloak command, a configuration change occurs that enables you to
access Keycloak from the Hitachi Ops Center Portal. This command also creates a user who has permission log in to
Keycloak (idpadmin).
After you enable the linking function, you
cannot disable it.
-
Log in to the management server as the root user.
If you log in as an ordinary user, use the sudo command to complete the following procedure as the root
user.
-
Run the following command:
installation-directory-of-Common-Services/utility/bin/csembeddedkeycloak -enable
-
When you are prompted whether to enable the setting, enter
y (for yes).
If you enter n (for no), the process
ends.
-
Specify the password for the idpadmin user that will be created.
Specify a password that follows the password policy for Common Services.
-
When the configuration is complete, the Common Services service is
restarted.