Keycloak is a SAML and OpenID Connect Identity Provider solution, offering federation to other protocol compliant identity providers.
The app is configured to use the Keycloak feature "User Federation" for authentication of users against OpenLDAP.
For more details go to the documentation of the most recent version of the UCS Keycloak App.
NOTE: This App should currently only be installed for testing purposes. It can only be installed on a UCS Primary Directory Node and thus is not suitable yet for productive use in environments that have UCS Backup Directory Nodes. It generates a new DNS name ucs-sso-ng.$domainname .