Open-source identity and access management with SSO.
- Stable Version: 26.5.4 (February 20, 2026)
- Previous Stable: 26.5.3 (January 2026)
- Latest Features: Enhanced CORS support, JWT Authorization Grants, Organization invitation management, SAML brokering fixes
- Security Fixes: Includes fixes for CVE-2026-1190, CVE-2026-0707, CVE-2025-5416, CVE-2026-2575, CVE-2026-2733
- Identity and access management capabilities with support for modern authentication protocols
- Integration with standard protocols: OpenID Connect (OIDC), OAuth 2.0, SAML 2.0, and LDAP
- Self-hosted environments with container and traditional deployment options
- Advanced security features including adaptive authentication, fine-grained authorization, and MFA
- Scalable clustering and high availability configurations
- Centralized authentication and authorization for microservices and distributed applications
- Single Sign-On (SSO) for internal or external applications and services
- Directory services integration with Active Directory, LDAP, and custom providers
- API security with token-based authentication and authorization
- Identity federation across multiple domains and organizations
- Java (Quarkus-based distribution)
- Available as container images (Docker/Podman)
- Supports multiple databases: PostgreSQL, MySQL, MariaDB, Oracle, Microsoft SQL Server
- Enterprise-grade IAM/SSO solution with active development
- Recommended for production: version 26.5.3 (includes critical security fixes)
- For development/testing: latest version is acceptable
- Memory Requirements: Recent versions (26.5+) have optimized startup memory consumption
- Container Deployment: Official images available at
quay.io/keycloak/keycloak:26.5.3
- Kubernetes: Compatible with Helm charts and operators for streamlined deployment
- Monitoring: Exposes metrics via JMX and Prometheus endpoints
- Backup Strategy: Regular backups of database and configuration files required
¶ History and References
Any questions?
Feel free to contact us. Find all contact information on our contact page.