Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

CAS vs Okta Vs Keycloak comparisions as an SSO solution

Which is the best option for SSO implementation Keycloack Vs CAS Vs Okta? I'm specifically looking for the disadvantages of each service to identify the best suitability for my system.

like image 897
Sachin Arora Avatar asked Dec 06 '18 11:12

Sachin Arora


People also ask

What is the difference between Keycloak and Okta?

Keycloak vs Okta: What are the differences? Keycloak: An open source identity and access management solution. It is an Open Source Identity and Access Management For Modern Applications and Services. It adds authentication to applications and secure services with minimum fuss. No need to deal with storing users or authenticating users.

What are the best Keycloak alternatives for SSO?

ForgeRock is another on the list of Top 10 Best Keycloak Alternatives that offers exceptional SSO Authentication experiences without compromising on security. It offers secure SSO solutions for your workforce, applications, services and customers. You can enable SSO per domain, throughout domains and even externally with federated SSO.

What is Keycloak?

Keycloak is an open source Identity and Access Management tool developed for modern applications and services. Keycloak comprises features such as Single Sign On (SSO), User Federation, Admin Console, Account Management Console, Social Login, Identity Brokering, Client Adapters, two factor authentication (2FA), LDAP integration and so much more.

What are the disadvantages of Keycloak?

Lack of multi tenant features. UI is not intuitive in some cases, like roles and permissions. To summarize Keycloak is one of the leading open source IAM (Identity and Access Management) tools. However, if you want to look for newer or better IAM and SSO (Single Sign on) features, you can try out Keycloak Alternatives reviewed above.


1 Answers

Both Keycloak and Okta should provide what you're looking for. I'm not sure about CAS as I haven't used it in 10 years. Since both Keycloak and Okta use OAuth 2.0/OIDC, you might even be able to use Keycloak in development, and Okta in production.

I've implemented OAuth 2.0 / OIDC support in JHipster. It uses Keycloak (in a Docker container) by default, and provides instructions for switching to Okta. Thanks to the power of Spring Security and Spring Boot, you only need to override some properties to switch between the two!

like image 86
Matt Raible Avatar answered Oct 11 '22 13:10

Matt Raible