FOSDEM 2026

"Ipa-tuura: FreeIPA connector for Keycloak" ( 2024 )

Sunday at 12:00, 30 minutes, K.3.401, K.3.401, Identity and Access Management devroom Alexander Bokovoy Francisco Triviño García , slides , video

The FreeIPA and SSSD teams have collaborated on a project to enable Keycloak to get a unified access for users and groups in FreeIPA/LDAP/Active Directory. It consists of a new Keycloak plugin and a bridge service to access the identity providers (FreeIPA/AD/LDAP). The bridge project, ipa-tuura, is based on the SCIMv2 API and provides an improved integration for classic directory services to cloud environments with an easy deployment. The bridge can also be used in a variety of different scenarios, from migration to synchronization of identities across different providers.

2026

0.48 "Migrating Multi-Factor Authentication: FreeIPA WebUI's Journey from Dojo to React"

2025

0.53 "Building Cross-Domain Trust Between FreeIPA Deployments"
0.51 "FreeIPA-to-FreeIPA Migration: Current Capabilities and Use Cases"
0.49 "DNS for enterprise domains: FreeIPA and Samba AD experience"
0.48 "Partly Cloudy IPA - joining cloud VMs to FreeIPA"

2024

0.52 "Empowering FreeIPA: a dive into the modern WebUI"
0.49 "Add user self-management, brokerage and federation to your infrastructure with Keycloak"
0.49 "Automated Integration of FreeIPA with AD and External IdP"
0.48 "Passkey authentication - the result"
0.47 "Connecting IBM AIX to Red Hat Identity Manager (FreeIPA)"

Related: