== Secure the first application

To secure the first application, you start by registering the application with your Keycloak instance:

. Open the {links-admin-console}.
. Click *Clients*.
. Click *Create client*
. Fill in the form with the following values:
** *Client type*: `OpenID Connect`
** *Client ID*: `myclient`
. Click *Next*
. Confirm that *Standard flow* is enabled.
. Click *Save*.

image::add-client-1.png[Add Client]

After the client is created, make these updates to the client:

. Scroll down to *Access settings*.
* Set *Valid redirect URIs* to `+https://www.keycloak.org/app/*+`
* Set *Web origins* to `+https://www.keycloak.org+`
. Click *Save*.

image::add-client-2.png[Update Client]

To confirm the client was created successfully, you can use the SPA testing application on the https://www.keycloak.org/app/[Keycloak website].

ifeval::[{links-local}==true]
. Open https://www.keycloak.org/app/.
. Click *Save* to use the default configuration.
endif::[]

ifeval::[{links-local}!=true]
. Open https://www.keycloak.org/app/.
. Change `Keycloak URL` to the URL of your Keycloak instance.
. Click *Save*.
endif::[]

. Click *Sign in* to authenticate to this application using the Keycloak server you started earlier.