Get Started
This section describes how you can get started learning about, installing, and using the HPE Ezmeral Data Fabric.
- Release Notes
  These notes contain information about releases 7.7.0 of the HPE Ezmeral Data Fabric as-a-service platform.
- Installation
  This section contains information about installing the HPE Ezmeral Data Fabric as-a-service platform.
- Service Activation and Billing
  Describes how to activate and register a new fabric to take advantage of automated billing.
- SSO Using Keycloak
  Describes how single sign-on (SSO) is implemented by using Keycloak.
  - Accessing the Keycloak Administration Console
    Describes how to start the Keycloak administration console so you can manage Keycloak and your SSO users.
  - Changing the Keycloak admin Password
    Describes how to change the default Keycloak admin password to prevent unauthorized access to Keycloak and your Data Fabric user information.
  - Adding New Users to Keycloak
    Describes how to add new users in Keycloak so you can use them to sign in to the Data Fabric UI.
  - Adding a Group to Keycloak
    Describes how to add a Keycloak user group.
  - Integrating Your LDAP Directory with Keycloak
    Keycloak can interface with an external LDAP directory so that LDAP users can access the Data Fabric UI.
  - Using LDAP Mappers
    Describes how to use mappers to auto-populate Keycloak with the mandatory attributes it needs for users and groups to access the Data Fabric UI.
  - Completing SSO Setup Using the Data Fabric UI
    Describes how to configure the HPE Ezmeral Data Fabric to work with your SSO server.
  - Resetting the SSO Configuration
    Describes how to update your single sign-on (SSO) configuration information using the Data Fabric UI.
  - Identifying All CLDB Nodes
    Explains how you can identify all the CLDB nodes in an HPE Ezmeral Data Fabric.
- Setting Up Clients
  Summarizes the steps for enabling client communication with the HPE Ezmeral Data Fabric.
- Upgrade
  This section contains information that describes how to upgrade the HPE Ezmeral Data Fabric as-a-service platform.
- User Assistance
  Describes how to access different resources that can help you learn how to use the HPE Ezmeral Data Fabric.
Platform
This section contains conceptual information that can help you to understand and use the HPE Ezmeral Data Fabric.
Administration
This section describes how to administer fabric resources in the global namespace of your HPE Ezmeral Data Fabric as-a-service platform.
Reference
Provides reference information for the HPE Ezmeral Data Fabric.
Glossary
Definitions for commonly used terms in MapR Converged Data Platform environments.

SSO Using Keycloak

Describes how single sign-on (SSO) is implemented by using Keycloak.

Keycloak Is Preinstalled and Preconfigured

Keycloak is the identity and access management (IAM) solution that provides single-sign-on (SSO) support for the Data Fabric. Starting with release 7.5.0, Keycloak is preinstalled and preconfigured whenever you create a new fabric.

During fabric creation, Keycloak is installed on all the nodes in the fabric. However, the Keycloak server is started on only one node. If new fabrics are created from the first fabric, Keycloak is installed on all the new fabric nodes, but the primary Keycloak node continues to serve the new fabrics.

At installation, Keycloak is preconfigured with users, groups, and roles that enable integration of Keycloak with the Data Fabric. The following table describes the preconfigured items:

Keycloak Preconfigured Items	How Many?	Names	Notes
Users	1	`admin`	Any additional users that are added must be created with `uid` and `gid` attributes, as described in Adding New Users to Keycloak.
Groups	1	`fabric-manager`	Any additional groups that are added must be created with the `gidNumber` attribute, as described in Adding a Group to Keycloak.
Roles	3	`fabric-manager` `infrastructure-admin` `developer`	These are the only supported roles. The `developer` role is sometimes referred to as the "fabric user" role.
Clients	1	`edf-client`	This is the dedicated client for the Data Fabric. In Keycloak, a client is an application or service that can request authentication for a user.

Keycloak installation also gives you access to the Keycloak admin portal.