Hello All,
I’m planning to migrate from 5.0-10 errata1228 to 5.2 in the next few months. I was reviewing the upgrade requirements, but some aspects are unclear to me, and I’d like to clarify them before moving forward.
From what I’ve seen, I need to install and migrate to Keycloak. This means, to me, that Keycloak will become the new IDP for UCS. However, I’m unsure about the consequences of migrating to Keycloak for other clients that currently use UCS as their IDP, such as Windows Clients or TrueNasCore.
Once the migration to Keycloak is completed, will I need to reconnect/rejoin all services that delegate authentication to UCS? If so, will Keycloak appear the same way as the previous UCS IDP, or will it be treated differently, requiring reconfiguration of permissions and groups for each external service? Has anyone gone through this process and could shed some light on it?
Additionally, I have Active Directory-compatible Domain Controller app. Will this be affected by the migration? Will I need to rejoin the windows clients to the UCS domain again?
Thanks in advance for your help!