Deploy KeyCloak Infrastructure

[Mad Martian]

OIDC + 2FA w/ LDAP IF

Since someone has been trying to steal the source code from this project since yesterday the time has come to do something about this. And it just so happens that this is precisely what I do in my day job.

The task is to implement this security (Open ID Connect with Two-Factor Authentication and LDAP Identity Fedration) using KeyCloak (I already have experience with it). Here are the necessary steps involved

1. Apache mod_auth_openidc plug-in (​KeyCloak How-To)
2. Install KeyCloak 10.0.2​(download from here)
3. Configure KeyCloak to run on boot
4. Reverse proxy setup for KeyCloak
5. KeyCloak LDAP federated identity plug-in
6. Setup FreeOTP authenticator in KeyCloak

Server resources are already pretty tight, and KeyCloak is not light-weight at all (it runs on WildFly, the new name for JBoss, which is a cousin to Apache Tomcat, none of which means anything to you does it?). If that's the case then I'll have to revist.