Lesson in Brief: Logging Into A Database Without Using A Password & Then Serious MFA

In our last article we set up two factor authentication to make access to our database file more secure — one factor is your username/password and the second factor is the authenticator app on your mobile device. But, we can go another direction too, utilzing something like a YubiKey for password-less authentication. Let’s check out how…

Acknowledgements

Much of the following is detailed in a white paper by Wim Decorte and Steven Blackwell, which can be found here. We are including the step by step directions…


Lesson in Brief: Taking Advantage Of Additional Security Features In Keycloak

Now that we have configured Keycloak to allow us to authenticate to a FileMaker database, we can take advantage of other features of Keycloak to further secure our database. Two factor authentication is popular nowadays and we’re going to implement that in this article.

Configuring Keycloak To Require A OTP

Two factor authentication is becoming increasingly popular, requiring a user to authenticate with their credentials and then provide a One Time Password as the second factor. …


Lesson in Brief: Adjusting External Authentication And Setting Up Groups

In our last article we configured Keycloak with a realm, client, users and more, ready for it to act as our authentication server for our FileMaker database. In the final stretch of our epic Keycloak journey, we turn our attention to FileMaker and the items we need to take care of there to bring this all together. We’re almost there, let’s get stuck in!

The Outline Plan

If you want more detail on how and why we’re taking the steps below, again check out the white papers by Wim Decorte and Steven Blackwell…


Lesson in Brief: Setting Up A Realm, Client, Groups And Users

So far in our Keycloak series we have been setting up the infrastructure for our server to run on, but now that’s done we can actually configure Keycloak to act as our authentication server for FileMaker. We’ll be using the Keycloak Administrator Console to do this, so let’s get logged in and get things set up.

Before We Begin

Before we jump into Keycloak, a reminder that the inspiration behind this series was the result of the work of Wim Decorte and Steven Blackwell. We strongly encourage all FileMaker developers to read…


Lesson in Brief: Installing MySQL And Configuring Keycloak To Use It

If you’ve been following our Keycloak series and have survived the previous SSL certificate article, congratulations. We’re close to actually getting stuck into Keycloak itself, but we have one last installation item to take care of. Out of the box, Keycloak comes with a relational database called H2, but this is primarily intended for development and testing purposes and is not designed for high concurrency environments. So, we need to set up Keycloak to connect to a more solid database, for which we are going to use MySQL.

Installing MySQL

During…


Lesson in Brief: Installing A Let’s Encrypt SSL Certificate With Auto-Renew

So far in our adventure into the depths of setting up an authentication server, we’ve installed Ubuntu, installed Keycloak and completed some initial configuration to allow us to log in to the software. We must remember that what we’re trying to achieve here is better security and as such having our authentication server be secure is critical. So, we’re going to need to have encryption, which means installing a SSL certificate. Let’s do this!

Security Can Be A Headache But It’s Important

Before we tackle installing our SSL certificate, it must be said that even in FileMaker…


Lesson in Brief: Installing Keycloak And Configuring Ubuntu

In our previous blog post, we installed Ubuntu on a virtual machine and then applied OS updates, ready for us to install Keycloak which is going to be our authentication server for our users to access our FileMaker database. So, next up, downloading and installing Keycloak. Let’s dig in…

Installing Dependencies And Other Set Up

Keycloak requires Java, so first thing we’ll do is get that installed. We’re assuming that your Ubuntu virtual machine is up and running and you’ve logged in either directly or via SSH. At the command prompt, type the following and hit enter:

sudo…

Lesson in Brief: Installing Ubuntu On A Virtual Machine Utilizing Windows 10

In part one of our Keycloak series, we jump straight in with getting our operating system of choice installed on a virtual machine, ready for Keycloak to be installed. As explained in our introduction blog post, we’ve chosen to use Ubuntu and Hyper-V on Windows 10, so let’s get started on our epic journey!

Installing Ubuntu On A Virtual Machine In Hyper-V On Windows 10

First up, let’s start downloading Ubuntu. On the computer where you are going to be running Hyper-V and the virtual machine, go to the Ubuntu Server download page. We want Option 2 — Manual…


Lesson in Brief: What Is Keycloak, Why Use It & Next Steps

Data breaches are already far too common and the IT security industry is ever evolving to combat unauthorized access to systems. So, how can we as FileMaker developers and deployers embrace modern security practices? One way is to utilize an Identity and Access Management solution, such as Keycloak, and in this multi-part series we’ll be looking at how to install, configure and connect Keycloak to authenticate users to a FileMaker database.

The Inspiration

Before we begin, we must give credit to Wim Decorte and Steven Blackwell for their relentless pursuit…


This seems ominous: omniORB: (0) Warning: SSL CA certificate location is not set. SSL transport disabled.

Working with Claris’ FileMaker Server Command Line Interface (CLI) allows you to configure your server to your needs and in some instances allows you to adjust settings that are not available within the Admin Console. When executing commands, if you encounter a warning message that begins “omniORB” followed by the date, time and something to do with the SSL, you may have concerns… And rightly so, “SSL transport disabled” doesn’t sound good, right? …

Sounds Essential

FileMaker Developers; Data Magicians

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store