Red Hat / CNCF

Keycloak is an open-source identity and access management (IAM) solution that provides single sign-on (SSO), identity brokering, social login, user federation, and fine-grained authorization services. Originally developed by Red Hat, it supports industry-standard protocols including OpenID Connect, OAuth 2.0, and SAML 2.0. 

For security monitoring, Keycloak generates detailed audit and event logs covering user authentication attempts, token issuance, session management, administrative changes, and identity federation activities. These logs enable detection of credential-based attacks, brute force attempts, unauthorised access, and privilege escalation within the identity infrastructure.