Installation/Upgrade

Network Configuration

To be able to use Keycloak Authentication, new ports have to be open in the firewall. The ports are configured during installation. The screenshot below shows the default ports.

The IBM Automatic Data Lineage user has to be able to reach the Keycloak server. For more details, please see the Networking Setup Examples section. At a minimum, the port that Keycloak will be available on has to be open in the firewall for users to connect to from their laptops/workstations.

When performing a clean installation, the port numbers are correctly assigned to the respective configuration files by the installer. If you change the management port manually in the standalone.xml, you have to update the mantaflow/keycloak/bin/jboss-cli.xml file as well.

During installation, the user has to provide:

• The port numbers dedicated to Keycloak. The port that Keycloak will be available on has to be accessible by all Automatic Data Lineage platform tools and applications as well as by Automatic Data Lineage users. Any user working with the application must be able to access the Keycloak instance.

• Super-user credentials. The username and password do not have any restrictions. The credentials entered are used to create the technical user that will initialize the Keycloak installation.

• Information on whether Keycloak is installed as a system service. This means that the Keycloak server will start automatically once the machine is started. The service name is MANTAKeycloak.