DEV Community: Jean B. The latest articles on DEV Community by Jean B. (@jeanb). https://dev.to/jeanb https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2164083%2F2a7a8afe-f65a-46b3-9dbc-1eaf55f137e1.png DEV Community: Jean B. https://dev.to/jeanb en Setting Up a Kubernetes Bare Metal Cluster on Ubuntu Jean B. Fri, 04 Oct 2024 04:48:39 +0000 https://dev.to/jeanb/setting-up-a-kubernetes-bare-metal-cluster-on-ubuntu-33k8 https://dev.to/jeanb/setting-up-a-kubernetes-bare-metal-cluster-on-ubuntu-33k8 <p>In this guide, we will walk through the steps to set up a Kubernetes cluster on bare metal servers running Ubuntu. This guide covers the installation of necessary tools, configuration of the master and worker nodes, and setting up network and storage solutions.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fig0mcltjaet7j28m47sj.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fig0mcltjaet7j28m47sj.png" alt="Image description"></a></p> <h2> Machine Requirements </h2> <p>To set up the Kubernetes cluster, you will need the following machines:</p> <ul> <li>1 Master Node on Ubuntu</li> <li>3 Worker Nodes on Ubuntu</li> <li>1 NFS host on Ubuntu</li> </ul> <h2> Step 1: Install SSH Server and Net-tools </h2> <p>First, ensure that SSH server and net-tools are installed on all machines. This will allow you to remotely manage the servers and check network configurations.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>apt update <span class="nb">sudo </span>apt <span class="nb">install </span>openssh-server <span class="nb">sudo </span>systemctl status ssh <span class="nb">sudo </span>apt <span class="nb">install </span>net-tools </code></pre> </div> <h2> Step 2: Cluster Volume Setup </h2> <h3> Objectives: </h3> <ul> <li>Install NFS Server on a separate host</li> <li>Install NFS client on all Kubernetes cluster nodes</li> <li>Test if all clients are connected to the NFS host</li> </ul> <h3> NFS Installation </h3> <h4> i. On NFS Host Machine </h4> <p>Update system packages and install the NFS server:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>apt update <span class="nb">sudo </span>apt <span class="nb">install </span>nfs-kernel-server <span class="nb">sudo mkdir</span> <span class="nt">-p</span> /mnt/nfs_share <span class="nb">sudo chown</span> <span class="nt">-R</span> nobody:nogroup /mnt/nfs_share/ <span class="nb">sudo chmod </span>777 /mnt/nfs_share/ <span class="nb">sudo </span>vim /etc/exports </code></pre> </div> <h4> ii. Grant Access to Clients </h4> <p>Configure the NFS server to allow access from the client machines:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>/mnt/nfs_share &lt;nfs_host_ip&gt;/24<span class="o">(</span>rw,sync,no_subtree_check<span class="o">)</span> <span class="nb">sudo </span>exportfs <span class="nt">-a</span> <span class="nb">sudo </span>systemctl restart nfs-kernel-server <span class="nb">sudo </span>ufw allow from &lt;nfs_host_ip&gt;/20 to any port nfs <span class="nb">sudo </span>ufw <span class="nb">enable sudo </span>ufw status <span class="nb">cd</span> /mnt/nfs_share/ <span class="nb">touch </span>sample1.text sample2.text </code></pre> </div> <h4> iii. &amp; iv. On NFS Client Machines </h4> <p>Install the NFS client and mount the shared directory:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>apt update <span class="nb">sudo </span>apt <span class="nb">install </span>nfs-common <span class="nb">sudo mkdir</span> <span class="nt">-p</span> /mnt/nfs_clientshare <span class="nb">sudo </span>mount &lt;nfs_host_ip&gt;:/mnt/nfs_share /mnt/nfs_clientshare <span class="nb">ls</span> <span class="nt">-l</span> /mnt/nfs_clientshare/ </code></pre> </div> <h2> Step 3: Master Node Setup </h2> <h3> i. Assign Static IP and Update Machine </h3> <p>If the machine IP is not static, assign a static IP and update the machine:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>vim /etc/netplan/00-installer-config.yaml network: ethernets: enp0s3: dhcp4: <span class="nb">true </span>enp0s8: addresses: <span class="o">[</span>&lt;master_node_ip&gt;/20] version: 2 </code></pre> </div> <p>Apply the changes and reboot:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>netplan apply <span class="nb">sudo </span>shutdown <span class="nt">-r</span> now <span class="nb">sudo</span> <span class="nt">-i</span> <span class="nb">sudo </span>apt update <span class="nb">sudo </span>apt <span class="nt">-y</span> full-upgrade <span class="o">[</span> <span class="nt">-f</span> /var/run/reboot-required <span class="o">]</span> <span class="o">&amp;&amp;</span> <span class="nb">sudo </span>reboot –f </code></pre> </div> <h3> ii. Install Kubernetes Tools </h3> <p>Install kubelet, kubeadm, and kubectl:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>apt-get update <span class="nb">sudo </span>apt-get <span class="nb">install</span> <span class="nt">-y</span> apt-transport-https ca-certificates curl gpg curl <span class="nt">-fsSL</span> https://pkgs.k8s.io/core:/stable:/v1.29/deb/Release.key | <span class="nb">sudo </span>gpg <span class="nt">--dearmor</span> <span class="nt">-o</span> /etc/apt/keyrings/kubernetes-apt-keyring.gpg <span class="nb">echo</span> <span class="s1">'deb [signed-by=/etc/apt/keyrings/kubernetes-apt-keyring.gpg] https://pkgs.k8s.io/core:/stable:/v1.29/deb/ /'</span> | <span class="nb">sudo tee</span> /etc/apt/sources.list.d/kubernetes.list <span class="nb">sudo </span>apt update <span class="nb">sudo </span>apt <span class="nt">-y</span> <span class="nb">install </span>vim git curl wget kubelet kubeadm kubectl <span class="nb">sudo </span>apt-mark hold kubelet kubeadm kubectl kubectl version <span class="nt">--client</span> <span class="o">&amp;&amp;</span> kubeadm version </code></pre> </div> <h3> iii. Disable Swap </h3> <p>Disable swap to ensure Kubernetes runs smoothly:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo sed</span> <span class="nt">-i</span> <span class="s1">'/ swap / s/^\(.*\)$/#\1/g'</span> /etc/fstab <span class="nb">sudo </span>swapoff <span class="nt">-a</span> <span class="nb">sudo </span>mount <span class="nt">-a</span> free –h </code></pre> </div> <p>Enable kernel modules and configure IP tables:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>modprobe overlay <span class="nb">sudo </span>modprobe br_netfilter <span class="nb">sudo tee</span> /etc/sysctl.d/kubernetes.conf<span class="o">&lt;&lt;</span><span class="no">EOF</span><span class="sh"> net.bridge.bridge-nf-call-ip6tables = 1 net.bridge.bridge-nf-call-iptables = 1 net.ipv4.ip_forward = 1 </span><span class="no">EOF </span><span class="nb">sudo </span>sysctl <span class="nt">--system</span> </code></pre> </div> <h3> iv. Install CRI-O </h3> <p>Install the Container Runtime Interface:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>apt update <span class="o">&amp;&amp;</span> <span class="nb">sudo </span>apt upgrade <span class="nb">sudo </span>systemctl reboot <span class="nv">OS</span><span class="o">=</span>xUbuntu_20.04 <span class="nv">CRIO_VERSION</span><span class="o">=</span>1.23 <span class="nb">echo</span> <span class="s2">"deb https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/</span><span class="nv">$OS</span><span class="s2">/ /"</span> | <span class="nb">sudo tee</span> /etc/apt/sources.list.d/devel:kubic:libcontainers:stable.list <span class="nb">echo</span> <span class="s2">"deb http://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable:/cri-o:/</span><span class="nv">$CRIO_VERSION</span><span class="s2">/</span><span class="nv">$OS</span><span class="s2">/ /"</span> | <span class="nb">sudo tee</span> /etc/apt/sources.list.d/devel:kubic:libcontainers:stable:cri-o:<span class="nv">$CRIO_VERSION</span>.list curl <span class="nt">-L</span> https://download.opensuse.org/repositories/devel:kubic:libcontainers:stable:cri-o:<span class="nv">$CRIO_VERSION</span>/<span class="nv">$OS</span>/Release.key | <span class="nb">sudo </span>apt-key add - curl <span class="nt">-L</span> https://download.opensuse.org/repositories/devel:/kubic:/libcontainers:/stable/<span class="nv">$OS</span>/Release.key | <span class="nb">sudo </span>apt-key add - <span class="nb">sudo </span>apt update <span class="nb">sudo </span>apt <span class="nb">install </span>cri-o cri-o-runc <span class="nb">sudo </span>systemctl <span class="nb">enable </span>crio.service <span class="nb">sudo </span>systemctl start crio.service systemctl status crio <span class="nb">sudo </span>apt <span class="nb">install </span>cri-tools <span class="nb">sudo </span>crictl info </code></pre> </div> <h3> v. Install Podman </h3> <p>Install Podman, an alternative to Docker:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>apt-get <span class="nt">-y</span> update <span class="nb">sudo </span>apt-get <span class="nt">-y</span> <span class="nb">install </span>podman </code></pre> </div> <h3> vi. Initialize Master Node </h3> <p>Enable kubelet and pull Kubernetes container images:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>lsmod | <span class="nb">grep </span>br_netfilter <span class="nb">sudo </span>systemctl <span class="nb">enable </span>kubelet <span class="nb">sudo </span>kubeadm config images pull <span class="nt">--cri-socket</span> unix:///var/run/crio/crio.sock </code></pre> </div> <h3> vii. Spin Up Master Node Pods </h3> <p>Initialize the master node:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>kubeadm init <span class="nt">--apiserver-advertise-address</span><span class="o">=</span>&lt;master_node_ip&gt; <span class="nt">--pod-network-cidr</span><span class="o">=</span>192.168.0.0/16 <span class="nt">--cri-socket</span> unix:///var/run/crio/crio.sock <span class="nt">--upload-certs</span> <span class="nt">--control-plane-endpoint</span><span class="o">=</span>&lt;master_node_ip&gt; <span class="nt">--v</span><span class="o">=</span>5 </code></pre> </div> <p>Expose the master node pods:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">export </span><span class="nv">KUBECONFIG</span><span class="o">=</span>/etc/kubernetes/admin.conf </code></pre> </div> <h3> viii. Install Network Plugins </h3> <p>Install network plugins using Calico:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl create <span class="nt">-f</span> https://raw.githubusercontent.com/projectcalico/calico/v3.25.1/manifests/tigera-operator.yaml kubectl create <span class="nt">-f</span> https://raw.githubusercontent.com/projectcalico/calico/v3.25.1/manifests/custom-resources.yaml </code></pre> </div> <h3> ix. Install HELM </h3> <p>Install HELM for managing Kubernetes applications:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>snap <span class="nb">install </span>helm <span class="nt">--classic</span> </code></pre> </div> <h3> x. Install NFS Subdirectory External Provisioner Helm Chart </h3> <p>Install the NFS subdirectory external provisioner:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>helm repo add nfs-subdir-external-provisioner https://kubernetes-sigs.github.io/nfs-subdir-external-provisioner/ helm <span class="nb">install </span>nfs-subdir-external-provisioner nfs-subdir-external-provisioner/nfs-subdir-external-provisioner <span class="nt">--set</span> nfs.server<span class="o">=</span>&lt;nfs_host_ip&gt; <span class="nt">--set</span> nfs.path<span class="o">=</span>/mnt/nfs_share </code></pre> </div> <h3> xi. Install and Configure External IP Service </h3> <p>Create a config.yaml file for the external IP service:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>vim config.yaml </code></pre> </div> <p>Add the following configuration (replace xxx with your IP range):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>apiVersion: v1 kind: ConfigMap metadata: namespace: metallb-system name: config data: config: | address-pools: - name: my-ip-space protocol: layer2 addresses: - xxx.xxx.xxx.210-xxx.xxx.xxx.250 </code></pre> </div> <p>Apply the configuration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl apply <span class="nt">-f</span> https://raw.githubusercontent.com/metallb/metallb/v0.9.5/manifests/namespace.yaml kubectl apply <span class="nt">-f</span> https://raw.githubusercontent.com/metallb/metallb/v0.9.5/manifests/metallb.yaml kubectl create secret generic <span class="nt">-n</span> metallb-system memberlist <span class="nt">--from-literal</span><span class="o">=</span><span class="nv">secretkey</span><span class="o">=</span><span class="s2">"</span><span class="si">$(</span>openssl rand <span class="nt">-base64</span> 128<span class="si">)</span><span class="s2">"</span> kubectl get configmap kube-proxy <span class="nt">-n</span> kube-system <span class="nt">-o</span> yaml | <span class="nb">sed</span> <span class="nt">-e</span> <span class="s2">"s/strictARP: false/strictARP: true/"</span> | kubectl apply <span class="nt">-f</span> - <span class="nt">-n</span> kube-system kubectl apply <span class="nt">-f</span> config.yaml </code></pre> </div> <h2> Step 4: Worker Node Setup </h2> <p>Follow steps i to v of the master node setup on each worker node. Then, join the worker nodes to the master node:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl get nodes kubeadm token generate kubeadm token create &lt;token&gt; <span class="nt">--print-join-command</span> </code></pre> </div> <p>Run the join command on each worker node:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubeadm <span class="nb">join</span> &lt;master_node_ip&gt;:6443 <span class="nt">--token</span> &lt;token&gt; <span class="nt">--discovery-token-ca-cert-hash</span> &lt;<span class="nb">hash</span><span class="o">&gt;</span> </code></pre> </div> <h2> Step 5: Install Ingress via HELM </h2> <p>Install the NGINX Ingress controller:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl create namespace ingress-nginx helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx helm <span class="nb">install </span>nginx-ingress ingress-nginx/ingress-nginx <span class="se">\</span> <span class="nt">--namespace</span> ingress-nginx <span class="se">\</span> <span class="nt">--set</span> controller.replicaCount<span class="o">=</span>3 <span class="se">\</span> <span class="nt">--set</span> controller.nodeSelector.<span class="s2">"kubernetes</span><span class="se">\.</span><span class="s2">io/os"</span><span class="o">=</span>linux </code></pre> </div> <h2> Step 6: Create Persistent Volume Profiles </h2> <p>Create a Persistent Volume:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>vim ClusterPersistentVolume.yaml </code></pre> </div> <p>Add the following configuration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>apiVersion: v1 kind: PersistentVolume metadata: name: dev-pv labels: <span class="nb">type</span>: <span class="nb">local </span>spec: storageClassName: nfs-client capacity: storage: 50Gi accessModes: - ReadWriteOnce persistentVolumeReclaimPolicy: Retain hostPath: path: /mnt/nfs_share </code></pre> </div> <p>Apply the configuration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl get sc kubectl apply –f ClusterPersistentVolume.yaml kubectl get pv </code></pre> </div> <p>Create a Persistent Volume Claim:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>vim ClusterPersistentVolumeClaim.yaml </code></pre> </div> <p>Add the following configuration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>apiVersion: v1 kind: PersistentVolumeClaim metadata: name: dev-pvc spec: storageClassName: nfs-client accessModes: - ReadWriteOnce resources: requests: storage: 25Gi </code></pre> </div> <p>Apply the configuration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl create namespace dev kubectl apply –f ClusterPersistentVolumeClaim.yaml <span class="nt">-n</span> dev kubectl get pvc –n dev </code></pre> </div> <p>By following these steps, you will have a fully functional Kubernetes cluster running on bare metal servers. This setup provides a robust environment for deploying and managing containerized applications.</p> kubernetes ubuntu devops Setting Up Keycloak with MSSQL Server Using Docker Jean B. Fri, 04 Oct 2024 00:43:43 +0000 https://dev.to/jeanb/setting-up-keycloak-with-mssql-server-using-docker-3pl1 https://dev.to/jeanb/setting-up-keycloak-with-mssql-server-using-docker-3pl1 <p>In this guide, I will walk you through setting up <strong>Keycloak</strong> with <strong>MSSQL Server</strong> using Docker containers. This setup will allow you to run Keycloak with MSSQL as its backend database, useful for development or integration with other applications.</p> <h2> Prerequisites </h2> <p>Before starting, ensure you have Docker installed and running on your system. We'll be pulling images for Keycloak and MSSQL Server and setting up a Docker network to connect both containers.</p> <h3> Step 1: Pull Docker Images for Keycloak and MSSQL Server </h3> <p>Start by pulling the latest Keycloak and MSSQL Server images from their respective repositories.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker pull quay.io/keycloak/keycloak:23.0 docker pull mcr.microsoft.com/mssql/server:2019-latest </code></pre> </div> <h3> Step 2: Create a Docker Network </h3> <p>We will create a dedicated Docker network for Keycloak and the MSSQL Server container so they can communicate with each other.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker network create keycloak_network </code></pre> </div> <h3> Step 3: Spin Up MSSQL Server </h3> <p>Next, run the MSSQL Server container. Replace <code>"yourstrongpassword"</code> with a strong password for the <code>sa</code> (System Administrator) account.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker run <span class="se">\</span> <span class="nt">-e</span> <span class="s1">'ACCEPT_EULA=Y'</span> <span class="se">\</span> <span class="nt">-e</span> <span class="s2">"MSSQL_SA_PASSWORD=yourstrongpassword"</span> <span class="se">\</span> <span class="nt">-e</span> <span class="s1">'MSSQL_RPC_PORT=135'</span> <span class="se">\</span> <span class="nt">-e</span> <span class="s1">'MSSQL_DTC_TCP_PORT=51000'</span> <span class="se">\</span> <span class="nt">-p</span> 1433:1433 <span class="nt">-p</span> 135:135 <span class="nt">-p</span> 51000:51000 <span class="se">\</span> <span class="nt">--net</span> keycloak_network <span class="se">\</span> <span class="nt">--name</span> sqlserver1 <span class="se">\</span> <span class="nt">--hostname</span> sqlserver1 <span class="se">\</span> <span class="nt">-d</span> mcr.microsoft.com/mssql/server:2019-latest </code></pre> </div> <h3> Step 4: Connect to the MSSQL Server Container </h3> <p>Once the container is up and running, you can access the container's shell using the following command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker <span class="nb">exec</span> <span class="nt">-it</span> sqlserver1 <span class="s2">"bash"</span> </code></pre> </div> <p>Login to the MSSQL server with <code>sqlcmd</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>/opt/mssql-tools/bin/sqlcmd <span class="nt">-S</span> localhost <span class="nt">-U</span> SA <span class="nt">-P</span> <span class="s2">"yourstrongpassword"</span> </code></pre> </div> <h3> Step 5: Configure Keycloak Database in MSSQL Server </h3> <p>After logging into the MSSQL server, run the following SQL command to install support for XA transactions (required by Keycloak):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">EXEC</span> <span class="n">sp_sqljdbc_xa_install</span> <span class="k">GO</span> </code></pre> </div> <p>Create a database for Keycloak:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">keycloak</span><span class="p">;</span> <span class="k">GO</span> <span class="k">SELECT</span> <span class="n">Name</span> <span class="k">from</span> <span class="n">sys</span><span class="p">.</span><span class="n">databases</span><span class="p">;</span> <span class="k">GO</span> </code></pre> </div> <h3> Step 6: Run Keycloak Container in Development Mode </h3> <p>Finally, spin up the Keycloak container. Replace the values for <code>KEYCLOAK_ADMIN_PASSWORD</code> and <code>KC_DB_PASSWORD</code> with your own strong passwords.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>docker run <span class="nt">--name</span> keycloak_mssql <span class="nt">-d</span> <span class="nt">-p</span> 8080:8080 <span class="nt">--net</span> keycloak_network <span class="se">\</span> <span class="nt">-e</span> <span class="nv">KEYCLOAK_ADMIN</span><span class="o">=</span>keyadmin <span class="se">\</span> <span class="nt">-e</span> <span class="nv">KEYCLOAK_ADMIN_PASSWORD</span><span class="o">=</span>yourkeycloakpass <span class="se">\</span> <span class="nt">-e</span> <span class="nv">KC_DB</span><span class="o">=</span>mssql <span class="se">\</span> <span class="nt">-e</span> <span class="nv">KC_DB_URL</span><span class="o">=</span><span class="s1">'jdbc:sqlserver://sqlserver1:1433;instanceName=sqlserver1;databaseName=keycloak;encrypt=false;'</span> <span class="se">\</span> <span class="nt">-e</span> <span class="nv">KC_DB_USERNAME</span><span class="o">=</span>sa <span class="se">\</span> <span class="nt">-e</span> <span class="nv">KC_DB_PASSWORD</span><span class="o">=</span>yourstrongpassword <span class="se">\</span> <span class="nt">-e</span> <span class="nv">KC_HOSTNAME</span><span class="o">=</span>localhost <span class="se">\</span> <span class="nt">-e</span> <span class="nv">KC_TRANSACTION_XA_ENABLED</span><span class="o">=</span><span class="nb">true</span> <span class="se">\</span> quay.io/keycloak/keycloak:23.0 start-dev </code></pre> </div> <p>Keycloak should now be running in development mode and connected to the MSSQL database. You can access the Keycloak admin console by navigating to <code>http://localhost:8080</code> in your browser.</p> <h2> <img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fw1805bsp77ru8d2du816.PNG" alt="Image description"> </h2> <h3> Conclusion </h3> <p>You’ve now set up Keycloak with MSSQL Server as the backend database using Docker. This setup is ideal for development purposes and can easily be extended for production environments by adjusting the configurations. If you run into any issues, make sure to check the logs for both Keycloak and MSSQL Server containers using <code>docker logs</code>.</p> <p>Let me know if you found this guide helpful!</p> docker keycloak sql