Adding New Users to Keycloak

Describes how to add new users in Keycloak so you can use them to sign in to the HPE Ezmeral Data Fabric.

By default, the Keycloak software provided with release 7.5.0 and later is preconfigured with only one user (the admin user). To add new users:
  1. Sign in to the Keycloak administration console as described in Accessing the Keycloak Administration Console. The master realm information is displayed.
  2. In the left navigation pane, click Users:

    The Users page is displayed, showing the preconfigured admin user.
  3. Click Add user:

    The Create user page is displayed.
  4. In the Username* field, type the name of a new user, and click Create:

    The User details page for the new user is displayed.
  5. Click the Attributes tab:

    The Attributes page is displayed.
  6. Enter uid and gid values for the new user:
    1. In the Key field, type uid, then specify a uid value, such as 12345, in the Value field.
    2. Click Add an attribute.
    3. In the second Key field, type gid, then specify a gid value, such as 12345, in the Value field:

  7. Click Save.
  8. Click the Credentials tab. The Credentials page shows No credentials.
  9. Click Set password:

    The Set password for <new_user> dialog box is displayed.
  10. Enter a password for the new user, and confirm the password.
  11. Move the Temporary slider to the Off position:

  12. Click Save. The Set password? confirmation dialog box is displayed.
  13. On the Set password? confirmation screen, click Save password. The Credentials tab of the User details page is displayed.
  14. Click the Role mapping tab. The Role mapping details are displayed.
  15. Click the default-roles-master role.
  16. Click the ellipsis () for the default-roles-master role, and select Unassign:

    The Remove mapping? dialog box is displayed.
  17. Click Remove. The Role mapping details page shows No roles for this user.
  18. Click Assign role:

    The Assign roles to <new_user> account is displayed.
  19. In the Name column, click one of the preconfigured roles to assign it to the new user:

  20. Click Assign. Next, you must assign the user to a group. Every user must belong to at least one group.
  21. To add the user to a group, click the Groups tab. To add a new group, see Adding a Group to Keycloak.
  22. Click Join Group:

    The Join groups for user <new_user> page is displayed:

  23. To add the user to a group, click the check box for a group.
  24. Click Join. The Groups page is displayed.
  25. In the top right corner of the page, click the down arrow for the admin user, and select Sign out:

    You can now sign in to the HPE Ezmeral Data Fabric using the new user.