Configuration
Configure Management Identity for your Camunda 8 Self-Managed deployment. This guide covers application-level configuration, including environment variables and IdP settings.
Deploying with Helm?
If you deploy Camunda 8 Self-Managed with Helm, use the Helm chart authentication and authorization guides to configure OIDC and Management Identity:
Configure Management Identity IdP
The default Camunda 8 Self-Managed deployment uses built-in Keycloak as an identity provider (IdP).
You can configure your Management Identity IdP using the following options:
| IdP configuration | Description |
|---|---|
| Connect to an identity provider | Connect to an OpenID Connect (OIDC) authentication provider to replace Keycloak. |
| Connect to an existing Keycloak instance | Connect Management Identity to your existing Keycloak instance. |
| Configure an external IdP using Keycloak | Configure an external identity provider using Keycloak, such as OpenID Connect, SAML, LDAP, or Active Directory. |
note
- Management Identity relies on a PostgreSQL. When running Management Identity with an external OIDC provider, you can connect to an alternative Database if your internal policies or compliance requirements prevent the use of PostgreSQL.
- Keycloak is started as a component in a Docker Compose and Helm Camunda 8 self-managed deployment.