SwitchOSS Open-source switchboard Search catalog

Tool dossier

Keycloak

Comprehensive open source identity management solution offering single sign-on, social login, and fine-grained authorization for applications and services.

6 sources 33,633 stars Self-hosted Apache-2.0
Visit website View repository Compare alternatives

Product snapshot

How the interface presents itself

Keycloak interface screenshot

Positioning

What this project is really offering

The goal here is to separate raw catalog facts from the sharper product shape users care about before they commit time.

About

Keycloak simplifies application security by providing a complete identity and access management solution. With built-in single sign-on (SSO), users authenticate once to access multiple applications, eliminating repetitive logins and logouts. The platform offers robust identity features including: Administrators benefit from a centralized console to manage users, configure authentication flows, and set security policies. Users get a self-service portal to manage their profiles, passwords, and linked accounts. Enterprise-ready capabilities include high performance, clustering support for scalability, customizable themes, and extensive APIs for integration. As a Cloud Native Computing Foundation project, Keycloak maintains high standards for security, reliability, and community-driven development.

Why it stands out

Keycloak is an open source alternative to Auth0, Okta. Licensed under Apache-2.0, it gives you full access to the source code and the freedom to modify, self-host, and contribute. You can deploy it on your own servers for complete data ownership and privacy.

Highlights

The capabilities most worth remembering

01

Social login integration with popular providers

02

LDAP and Active Directory federation

03

OpenID Connect, OAuth 2.0, and SAML 2.0 protocol support

04

Fine-grained authorization policies

05

Two-factor authentication

06

User account management

07

Single-Sign On

08

Identity Brokering and Social Login

09

User Federation

10

Admin Console

11

Account Management Console

12

Standard Protocols

13

Authorization Services

14

Single Sign-On (SSO)

15

Social login (Google, GitHub, etc.)

16

LDAP & Active Directory federation

17

Fine-grained authorization

18

Multi-factor authentication

19

Admin console & REST API

Evidence

What backs up the editorial summary

Primary source links

github.com/sfermigier/awesome-foss-alternatives/blob/main/README.md github.com/awesome-foss/awesome-sysadmin/blob/master/README.md openalternative.co/keycloak opensourcealternative.to/project/keycloak opensourcefest.org/tools/keycloak osssoftware.org/tools/keycloak