dovholuknf

closing for now. if this issue happens again we can open this back up and diagnose

@thiagosestini's recommendation is probably a good one, in order to use authentik for authentication to the service itself but OpenZiti doesn't control authentication to applications. It's the secure conduit to...

@rgallettonf - this old issue is probably ready to be queued up to be closed?

I'll close this out. Yes, it's available but it requires you to host the ZAC on the same url as the controller API to avoid CORS-related issues. If you host...

As to 'how to get the zac to use it' - once you configure the external jwt signer it should just show up on your login page. see https://openziti.io/docs/guides/external-auth/identity-providers/keycloak/

When you have it right, you'll see something like this at the ZAC auth screen

I disagree.

also relevant to this issue https://github.com/openziti/ziti/issues/2889

Thanks for following up. I'm not sure how we/i missed this issue, apologies for not seeing it. Since it sounds like you're all set I'll close the issue. Please reopen...

i think this issue should be closed and a new one opened as a bug with steps to reproduce