Meet Keycloak at KubeCon EU, Amsterdam in March 2026

February 07 2026 by Alexander Schwartz

The Keycloak project is back at KubeCon EU Amsterdam with all highlights: Talks, our kiosk in the Project Pavilion, and this time also with KeycloakCon, our very-own co-located event! If you are new to Keycloak, or already a user, join us for this exciting event to learn and connect.

Half-day KeycloakCon packed with all-things-Keycloak

KeycloakCon is a co-located event happening on Monday, March 22 from 09:00 to 12:30. It brings together the Keycloak community with case studies and talks featuring the latest features. Join this event for technical talks, professional growth, and networking opportunities.

Book your ticket as part of the All-Access In-Person KubeCon + CloudNativeCon pass.

KubeCon EU Artwork

Community Meet & Greet at the Project Pavilion

This is the place to meet people who use Keycloak, contribute to Keycloak, take our survey about new Keycloak features, and get some cool swag!

Takashi Norimatsu from Hitachi, Alexander Schwartz from IBM, Sebastian Łaskawiec from Defense Unicorns, and other contributors will host a Keycloak kiosk at the Project Pavilion.

Keycloak Kiosk (P-21A) in Halls 1-5 opening hours:

  • Tuesday, March 23: 15:10 - 19:00

  • Wednesday, March 24: 14:00 - 17:00

  • Thursday, March 25: 12:30 - 14:00

Technical talks about Agents, Sovereign Identity, Securing Proxies, and SPIFFEE

These talks are part of the main conference. Join the speakers on-site!

Sovereign Identities for Your Cloud Native Architecture With Keycloak

Alexander Schwartz, IBM & Sebastian Łaskawiec, Defense Unicorns
Wednesday March 25, 2026 11:45 - 12:15 CET

Keycloak serves as a central hub for managing human and machine identities across sovereign cloud-native architectures using OpenID Connect, SAML, and trust brokering. This talk shows how to implement strong authentication, use the latest OpenTelemetry features, and leverage Kubernetes service accounts to authenticate clients.

Signed, Sealed, Delivered: Why Reverse Proxies Outperform VPNs

Peter ONeill, Teleport & Boris Kurktchiev, Independent
Wednesday March 25, 2026 17:30 - 18:00 CET

Traditional VPNs often grant excessive network access once a user is "inside," whereas reverse proxies provide a more secure, granular approach by verifying identity for every specific resource. This session will use a demo featuring Envoy and Keycloak to illustrate how reverse proxies enforce precise authorization and logging for modern, cloud-native systems.

SPIFFE Meets OAuth: Federated Identity for Cloud Native Workloads

Yoshiyuki Tabata, Hitachi, Ltd.
Thursday March 26, 2026 11:00 - 11:30 CET

This session explores federated identity patterns designed to solve the complexity of propagating authorization across multi-cluster Kubernetes environments. By combining SPIFFE JWT SVIDs with emerging OAuth Identity Chaining and assertion frameworks, the talk shows how to achieve secure, multi-hop identity propagation without relying on static credentials. Attendees will see a practical integration of Keycloak and SPIRE that enhances interoperability and security in dynamic cloud-native architectures.

When an Agent Acts on Your Behalf, Who Holds the Keys?

Mariusz Sabath & Maia Iyer, IBM Research
Tuesday March 24, 2026 11:15 - 11:45 CET

This session addresses the security risks of anonymous AI actions by introducing an architecture that cryptographically links agent identity with delegated user identity. By combining SPIRE for workload attestation, Keycloak for managing user context, and an MCP Gateway for policy enforcement, the framework ensures every action is fully traceable. Attendees will learn how to move beyond static API keys to create a verifiable audit trail for both the executing code and the authorizing user.

See you soon!

We’re preparing for KubeCon EU 2026 and can’t wait to connect with our community. Mark your calendars and join us.

See you in Amsterdam!