Hashicorp Vault with OIDC using Keycloak

I recently had to configure Hashicorps Vault to be integrated with our SSO provider Keycloak using Openid-Connect.

NOTE:

  • You need a running and unsealed vault already.
  • Vault is running at the URL: https://vault.example.com
  • You need an admin login or be able to administer a Keycloak realm
  • Keycloak is running at the URL: https://idms.example.com

Keycloak