이 콘텐츠는 선택한 언어로 제공되지 않습니다.

Chapter 17. Account Console


Red Hat build of Keycloak users can manage their accounts through the Account Console. They can configure their profiles, add two-factor authentication, include identity provider accounts, and oversee device activity.

Additional resources

  • The Account Console can be configured in terms of appearance and language preferences. An example is adding additional attributes to the Personal info page. For more information, see the Server Developer Guide.

17.1. Accessing the Account Console

Procedure

  1. Make note of the realm name and IP address for the Red Hat build of Keycloak server where your account exists.
  2. In a web browser, enter a URL in this format: server-root/realms/{realm-name}/account.
  3. Enter your login name and password.

Account Console

Account Console

17.2. Configuring ways to sign in

You can sign in to this console using basic authentication (a login name and password) or two-factor authentication. For two-factor authentication, use one of the following procedures.

17.2.1. Two-factor authentication with OTP

Prerequisites

  • OTP is a valid authentication mechanism for your realm.

Procedure

  1. Click Account security in the menu.
  2. Click Signing in.
  3. Click Set up Authenticator application.

    Signing in

    Signing in

  4. Follow the directions that appear on the screen to use your mobile device as your OTP generator.
  5. Scan the QR code in the screen shot into the OTP generator on your mobile device.
  6. Log out and log in again.
  7. Respond to the prompt by entering an OTP that is provided on your mobile device.

17.2.2. Two-factor authentication with WebAuthn

Prerequisites

  • WebAuthn is a valid two-factor authentication mechanism for your realm. Please follow the WebAuthn section for more details.

Procedure

  1. Click Account Security in the menu.
  2. Click Signing In.
  3. Click Set up a Passkey.

    Signing In

    Signing in with a Passkey

  4. Prepare your Passkey. How you prepare this key depends on the type of Passkey you use. For example, for a USB based Yubikey, you may need to put your key into the USB port on your laptop.
  5. Click Register to register your Passkey.
  6. Log out and log in again.
  7. Assuming authentication flow was correctly set, a message appears asking you to authenticate with your Passkey as second factor.

17.2.3. Passwordless authentication with WebAuthn

Prerequisites

Procedure

  1. Click Account Security in the menu.
  2. Click Signing In.
  3. Click Set up a Passkey in the Passwordless section.

    Signing In

    Signing in with a Passkey

  4. Prepare your Passkey. How you prepare this key depends on the type of Passkey you use. For example, for a USB based Yubikey, you may need to put your key into the USB port on your laptop.
  5. Click Register to register your Passkey.
  6. Log out and log in again.
  7. Assuming authentication flow was correctly set, a message appears asking you to authenticate with your Passkey as second factor. You no longer need to provide your password to log in.

17.3. Viewing device activity

You can view the devices that are logged in to your account.

Procedure

  1. Click Account security in the menu.
  2. Click Device activity.
  3. Log out a device if it looks suspicious.

Devices

Devices

17.4. Adding an identity provider account

You can link your account with an identity broker. This option is often used to link social provider accounts.

Procedure

  1. Log into the Admin Console.
  2. Click Identity providers in the menu.
  3. Select a provider and complete the fields.
  4. Return to the Account Console.
  5. Click Account security in the menu.
  6. Click Linked accounts.

The identity provider you added appears in this page.

Linked Accounts

Linked Accounts

17.5. Accessing other applications

The Applications menu item shows users which applications you can access. In this case, only the Account Console is available.

Applications

Applications

17.6. Viewing group memberships

You can view the groups you are associated with by clicking the Groups menu. If you select Direct membership checkbox, you will see only the groups you are direct associated with.

Prerequisites

  • You need to have the view-groups account role for being able to view Groups menu.

View group memberships

View group memberships

Red Hat logoGithubRedditYoutubeTwitter

자세한 정보

평가판, 구매 및 판매

커뮤니티

Red Hat 문서 정보

Red Hat을 사용하는 고객은 신뢰할 수 있는 콘텐츠가 포함된 제품과 서비스를 통해 혁신하고 목표를 달성할 수 있습니다.

보다 포괄적 수용을 위한 오픈 소스 용어 교체

Red Hat은 코드, 문서, 웹 속성에서 문제가 있는 언어를 교체하기 위해 최선을 다하고 있습니다. 자세한 내용은 다음을 참조하세요.Red Hat 블로그.

Red Hat 소개

Red Hat은 기업이 핵심 데이터 센터에서 네트워크 에지에 이르기까지 플랫폼과 환경 전반에서 더 쉽게 작업할 수 있도록 강화된 솔루션을 제공합니다.

© 2024 Red Hat, Inc.