Add on

Keycloak as a Service

Managed Keycloak: security, scalability, and simplicity for your IAM, just a click away.

Keycloak as a Service

Keycloak as a Service is a fully managed Identity and Access Management (IAM) solution, enabling secure and centralized authentication for your applications without the burden of maintenance. Hosted on a dedicated, scalable infrastructure with no shared resources, it supports major IAM standards (OAuth 2.0, OpenID Connect, SAMLv2) and offers advanced customization options.

This ready-to-use solution is configured to enhance the security of your applications from the start. Keycloak as a Service comes pre-configured with the most useful settings and plugins, so you can get up and running quickly. You’re free to fine-tune it, add your own themes, plugins, and more.

Managed Keycloak, key highlights

  • Secure authentication and access management
  • Deploy in seconds
  • Fully customizable
  • Compatible with most IAM standards
  • Dedicated, auto-scaling infrastructure tailored to your needs
  • Easy import and export of realms

IAM: identification and authentification

Keycloak as a Service supports most IAM standards and gives you fine-grained control over users and permissions. It integrates seamlessly with user federation tools such as ActiveDirectory, OpenLDAP, and others via the LDAP protocol. It can also delegate authentication to external identity providers using OpenID Connect or SAMLv2.

This add-on integrates naturally with your Clever Cloud applications and databases—but you can just as easily use it independently with external services.

Your Keycloak as a Service usage

  • User management within your information system (Active Directory, LDAP, Kerberos, etc.)
  • Applications: multi-tenancy, multi-factor authentication (TOTP, FIDO, WebAuthn), integration with existing applications, SSO, and more
  • Manage authentication flows between your different services
  • Password reset and account recovery

Managed IAM: your plug-and-play identity solution

Dedicated infrastructure

No shared resources. Your Keycloak as a Service instance comes with its own dedicated resources: a standalone Java application, a dedicated database, and a dedicated file system.

Run-time support and maintenance 

Clever Cloud provides updates, handles security, ensures operational maintenance, and performs regular backups of your Keycloak as a Service data. You also have access to logs and detailed usage monitoring.

Scalability and Performance

Keycloak as a Service is built to scale effortlessly: handle thousands of simultaneous connections with an infrastructure that grows with you.

  • Dedicated infrastructure: Enjoy a fully isolated environment — each instance includes its own Java application, database, and file system.
  • Scalability: Take full control over the sizing of each component. The default resource allocation is already capable of handling heavy loads, but everything can be resized at any time to match your growth — all without downtime or lost connections, thanks to live scaling.

Easy management and full customization

You have full control over your service, with streamlined management of realms and easy import/export capabilities.

  • Plugins adapt to all your needs: use existing community plugins or develop your own custom ones—for a truly customizable and modular IAM solution.
  • Simplified realm import and export
  • Custom login page theming

Managed Keycloak : what’s included

Keycloak as a Service uses three independently managed Clever Cloud resources, allowing you to precisely tailor the setup to your needs:

  • A PostgreSQL database
  • A Java image
  • A File System FSBucket

Keycloak as a Service experts: Please Open-It

Keycloak as a Service was designed with the help of Please Open-It, experts in SSO, identity management, and authentication.
Leverage their expertise for integration or customization of your service. And if you want to go even further, Please Open-It can help you build a fully tailored IAM solution.

VIDEO

Managed Keycloak demonstration

Discover the presentation of Keycloak as a Service by Mathieu Passenaud from Please Open IT and Horacio Gonzalez from Clever Cloud.
live twitch keycloak

Legal informations

Keycloak as a Service is an add-on developed in collaboration with Please Open IT, and hosted and operated by Clever Cloud. You can find our General Terms of Service here.

NEWS

Our blog

Blog

Simplify the management of Clever Cloud services via Kubernetes with our new operator

For the past two years, we’ve been enabling our customers to combine the ease of deployment of Clever Cloud with an existing Kubernetes infrastructure through an operator.
Engineering

Keycloak as a Service: identity management without the complexity

Ensuring identification and access management (IAM) in an application is a challenge that is as strategic as it is complex. But beyond the initial configuration, it is the maintenance, updates and supervision of the solution that most mobilise your teams. What if you could concentrate on your applications… while a managed solution took care of the rest?
Company

UP Programme: Who are the new winning startups?

Clever Cloud is proud to announce the arrival of new start-ups for the second promotion…

Company