You're reading from Implementing Multifactor Authentication Protect your applications from cyberattacks with the help of MFA

Product type Paperback

Published in Jun 2023

Publisher Packt

ISBN-13 9781803246963

Length 550 pages

Edition 1st Edition

Tools

Okta

Concepts

Cybersecurity

Author (1):

Marco Fanti

View More author details

Table of Contents (20) Chapters

Preface

1. Part 1: Introduction

2. Chapter 1: On the Internet, Nobody Knows You’re a Dog FREE CHAPTER

3. Chapter 2: When to Use Different Types of MFA

4. Part 2: Implementing Multifactor Authentication

5. Chapter 3: Preventing 99.9% of Attacks – MFA with Azure AD and Duo

6. Chapter 4: Implementing Workforce and Customer Authentication Using Okta

7. Chapter 5: Access Management with ForgeRock and Behavioral Biometrics

8. Chapter 6: Federated SSO with PingFederate and 1Kosmos

9. Chapter 7: MFA and the Cloud – Using MFA with Amazon Web Services

10. Chapter 8: Google Cloud Platform and MFA

11. Chapter 9: MFA without Commercial Products – Doing it All Yourself with Keycloak

12. Part 3: Proven Implementation Strategies and Deploying Cutting-Edge Technologies

13. Chapter 10: Implementing MFA in the Real World

14. Chapter 11: The Future of (Multifactor) Authentication

15. Index

Why subscribe?

16. Other Books You May Enjoy

Appendix A: Installing the Java Software Development Kit

1. Appendix B: Custom App Integration with Azure AD

2. Appendix C: Installing Apache Tomcat Software

Using Keycloak for SSO

Applications or services that request authentication from a user are called clients in Keycloak. Generally, clients are applications and services that want to use Keycloak as an SSO solution:

Click Clients in the left menu, and then Create client:

Figure 9.20 – The Clients page

Enter a unique Client ID value and click Next:

Figure 9.21 – The Create client page

Click Save:

Figure 9.22 – The Create client capability page

After the client is created, it is not very useful unless it protects an application or service. Keycloak provides a test application at https://www.keycloak.org/app and we are going to use that application to test Keycloak.

Enter https://www.keycloak.org/app/ in the Root URL field. Enter https://www.keycloak.org/ in the Valid redirect URIs field. Enter * in the Valid post logout redirect URIs field...