Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


Add Anuta ATOM as an Identity Provider

Before you add Anuta ATOM as an identity provider for single sign-on, you must register Paragon Automation in Keycloak that ATOM uses for authentication. While registering with Keycloak, you must provide the URL to access Paragon Automation portal.

To add ATOM to Paragon Automation, you will need the following information from Keycloak.

  • The issuer link.

    You can get this URL from the OIDC well know configuration endpoint. For example: https://sso server

  • Client ID and Client secret.

    The client ID and client secret details are obtained from Keycloak when you register paragon- automation as a client in Keycloak, see Register Paragon Automation with Keycloak.

To add ATOM as an identity provider in Paragon Automation:

  1. Select Administration > Authentication > Identity Providers on the left navigation menu.

    The Identity Providers page appears. If there are no identity providers already added, the Identity Providers page has the Add Identity Provider button to add an identity provider. If an identity provider is already added, the page lists the configured identity providers.

  2. Click Add Identity Provider if adding an identity provider for the first time or else, click the Add (+) icon.

    The Create Identity Provider page appears.

  3. Enter values as described in Table 1.

    Fields marked with * are mandatory.

  4. Click OK.

    A confirmation message appears indicating that the identity provider is added successfully and the identity provider is listed on the Identity Providers page.

Table 1 displays the fields on the Add Identity Providers page.

Table 1: Fields on the Add Identity Providers Page
Field Description


Select OpenIDConnect as type of the identity provider.


Enter a name for the identity provider.

For example, ATOM

The name can be a string of alphanumeric characters and some special characters (hyphen and underscore); 32 characters maximum.


Enter the URL in the form https://<atom-master-IPv4-address>:32443/auth/realms/system.


If not already enabled, click this toggle button to allow users to log in to Paragon Automation by using ATOM credentials (single sign-on).

Client ID

The unique ID for Paragon Automation in the Keycloak. This information is derived from the Keycloak UI.

For example: Paragon

Client Secret

A secret generated for authenticating requests from Paragon Automation. This information is derived from the Keycloak UI.

The secret can be in the format xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx, where x is an alphanumeric character.

Authorized Redirect URI

A valid URI pattern that a browser can redirect to after a successful login or logout from Paragon Automation.

The value is https://portal Ip address/oidc/redirect/callback; where, portal ip address is the IP address to access the Paragon Automation GUI.

You cannot edit this field.


Assign roles that a user, logging by using single sign-on, can be assigned.