GuardianKey for KeyCloak/RH-SSO

Painless authentication protection for your Single-Sign-On System.
Free native extension for KeyCloak and RH-SSO.

How the extension works

The GuardianKey extension for KeyCloak/RH-SSO sends events to the GuardianKey engine on each login attempt.

GuardianKey returns a risk level and a suggested action (ACCEPT, NOTIFY, HARD-NOTIFY, or BLOCK).

KeyCloak/RH-SSO or GuardianKey can notify your users about accesses in their accounts. Also, high-risk attempts can be blocked.

Notified users can tell if the attempts were legitimate or not. In the affirmative case, GuardianKey learns for future analysis, otherwise, your security team can be notified.

Protect against attacks

Brute force

Innovative brute force detection method.

Account takeover

Contextual and behavioral data are used to identify users.

Automated attacks

Threat intelligence, contextual and behavioral data are used.

Anonymization

Anonymization proxies are listed in the threat intel database.

Credential stuffing

Block authentication attempts even if the password matches.

Password guessing

Approach to detect and block password guessing.

The extension in action

Using the extension

Resources

  • You must have a GuardianKey Auth Security in your organization or in our cloud (Lite series). Check the "services" menu for this;

  • Deploy the extension files in your KeyCloak or RH-SSO installation;

  • Configure the GuardianKey Auth Security;

  • Configure the KeyCloak or RH-SSO to send events.

Full docummentation available at https://github.com/pauloangelo/guardiankey-plugin-keycloak