Painless authentication protection for your Single-Sign-On System.
Free native extension for KeyCloak and RH-SSO.
How the extension works
The GuardianKey extension for KeyCloak/RH-SSO sends events to the GuardianKey engine on each login attempt.
GuardianKey returns a risk level and a suggested action (ACCEPT, NOTIFY, HARD-NOTIFY, or BLOCK).
KeyCloak/RH-SSO or GuardianKey can notify your users about accesses in their accounts. Also, high-risk attempts can be blocked.
Notified users can tell if the attempts were legitimate or not. In the affirmative case, GuardianKey learns for future analysis, otherwise, your security team can be notified.
Protect against attacks
The extension in action
Using the extension
You must have a GuardianKey Auth Security in your organization or in our cloud (Lite series). Check the "services" menu for this;
Deploy the extension files in your KeyCloak or RH-SSO installation;
Configure the GuardianKey Auth Security;
Configure the KeyCloak or RH-SSO to send events.
Full docummentation available at https://github.com/pauloangelo/guardiankey-plugin-keycloak