Navigate to the Keycloak Admin Console

Log in to your Keycloak admin console and select your realm

Create a SAML Client

Navigate to Clients → Create Client

Select SAML as the client protocol

Set Client ID to your application domain (e.g., myapp.example.com)

Fill out general settings

Client ID: myapp.example.com

Name: Your Application Name

Description: Optional description

Click Save

Fill out SAML settings

Fill out the following values:

Home URL: https://myapp.example.com/

Valid redirect URIs: https://myapp.example.com/*

Master SAML Processing URL: https://myapp.example.com/saml/acs

Name ID format: Email Address

Force POST Binding: ON

Include AuthnStatement: ON

Set up attribute mappings