keycloak-scim/server_installation/topics/network.adoc

22 lines
663 B
Text
Raw Normal View History

2016-04-30 04:39:32 +00:00
2016-04-28 20:34:44 +00:00
[[_network]]
== Setting up the network
2016-04-28 20:34:44 +00:00
The default installation of {project_name} can run with some networking limitations. For one, all network endpoints bind to `localhost`
2016-04-28 20:34:44 +00:00
so the auth server is really only usable on one local machine. For HTTP based connections, it does not use default ports
2017-08-28 12:50:14 +00:00
like 80 and 443. HTTPS/SSL is not configured out of the box and without it, {project_name} has many security
2016-04-29 20:12:12 +00:00
vulnerabilities.
2017-08-28 12:50:14 +00:00
Finally, {project_name}
2016-04-29 20:12:12 +00:00
may often need to make secure SSL and HTTPS connections to external servers and thus need a trust store set up so that endpoints can
2016-04-28 20:34:44 +00:00
be validated correctly. This chapter discusses all of these things.