Keycloak is an open-source identity and Access Management solution. It is a single sign-on security application for web applications and RESTful web services. Link and Runtime REST API supports Keycloak solution of user administration and authorization.

Existing user databases hold user credentials. Keycloak federates these existing external user databases through the concept of storage providers. By default, Keycloak supports an LDAP and Active Directory storage provider.

When an user tries to access the Link Web-console, the browser is redirected to Keycloak authentication system to authenticate user credentials. User gets a reference token from the Keycloak to connect to the server.