Frequently asked questions ​

SSL / TLS protocols supported ​

Cloud-IAM only supports TLS protocol v1.2 and v1.3. We don't accept any version of SSL protocol anymore due to previous vulnerabilities.

Redirection to a specific Keycloak realm ​

When browsing a Cloud-IAM Keycloak's deployment (e.g. https://DEPLOYEMENT_NAME.cloud-iam.com/ ) at the root path / the user is redirected to the admin console of the master realm by default.

Cloud-IAM customer's might have on of their requirement:

• Customize the default / redirect behavior
• Redirect the user to a specific realm's depending on some requirements
• Setup a static page instead of redirecting the user to the master realm's admin console

These kind of features are out of Cloud-IAM scope since they depends a lot on the customer's use-case but there are multiple way to handle this:

• setup a reverse-proxy in front of Keycloak's deployment to manage this kind of redirects
• put special logic on the application side before redirecting to the right URL (realm choice included)