Configure Azure Entra ID as IdP on Keycloak
7 comments
·March 17, 2025comrade1234
ziddoap
>This was before AI started being useful. I wonder if it would go better now.
I still find most Entra (and Azure) stuff annoying. Copilot and others just regurgitate the outdated docs.
derektank
It's only in the last few months that Claude and ChatGPT have consistently started referring to it as Entra instead of Azure Active Directory, a name change that happened in 2023, presumably as newer training data has been used in the more recent models.
raffraffraff
I've terraformed the Keycloak end of this. I think MrParker's terraform provider might have actually become the default because it's GitHub location is redirected under the Keycloak org. It's extremely good, and makes dealing with Keycloak a lot easier.
The Azure end is a pain and I leave that to someone else. (Sorry Pete)
null
null
null
Microsoft’s Azure/Entra ID documentation is some of the worse I’ve had to deal with.
I already had Azure SSO working with a web application and a potential new customer wanted to see it working with a yubikey. What should have been a simple couple-hour project took me all day. Documentation at Microsoft and yubi were both out-of-date, screenshots had no relation to current reality, and having to sift through information meant for giant enterprises vs just getting a yubikey to work with with a simple account for SSO just was painful…
This was before AI started being useful. I wonder if it would go better now.