LDAPS is used to secure your LDAP connection. Refer to the Keycloak documentation on LDAP for more information.Keycloak uses the default location within the container:
# Replace <CA.pem> with your certificate authority.# Replace <container_ID> with your container ID.docker ps|grep cloakdocker cp <CA.pem> <container_ID>:/opt/jboss
Drop into the container:
Copy
Ask AI
# Replace <container_ID> with your container ID.docker exec -u root -it <container_ID> /bin/bash
Add the keystore:
Copy
Ask AI
# Replace <CA.pem> with your certificate authority.cd /opt/jboss/keycloak/standalone/configuration/keystoreskeytool -keystore truststore -storepass anaconda -noprompt -trustcacerts -importcert -alias ldap-ca -file /opt/jboss/<CA.pem>
Add the following to the CA certs bundle:
Copy
Ask AI
# Replace <CA.pem> with your certificate authority.cp /opt/jboss/<CA.pem> /etc/pki/ca-trust/source/anchors/update-ca-trust
This will update the CA certs bundle found in the following file path:
Copy
Ask AI
/etc/pki/ca-trust/extracted/java
Restart the container:
Copy
Ask AI
# Replace <container_ID> with your container ID.docker ps|grep cloakdocker restart <container_ID>