Identity & keycloak Connection Error

wvinothkumar · March 25, 2025, 3:12pm

Hi Team,
I am running camunda 8.6 using helm chart into Openshift. When I try to connect from my Identity to Keycloak, these are the errors I am getting. Can someone suggest me,

Identity Log:
2025-03-25 15:08:18.882 ERROR 1 — [ main] i.c.i.i.k.c.KeycloakConfiguration : Failure #3. Unable to connect to Keycloak.

242025-03-25 15:08:48.883 WARN 1 — [ main] i.c.i.i.k.c.KeycloakConfiguration : Retrying…

252025-03-25 15:08:48.885 ERROR 1 — [ main] i.c.i.i.k.c.KeycloakConfiguration : Failure #4. Unable to connect to Keycloak.

262025-03-25 15:09:18.885 WARN 1 — [ main] i.c.i.i.k.c.KeycloakConfiguration : Retrying…

272025-03-25 15:09:18.887 ERROR 1 — [ main] i.c.i.i.k.c.KeycloakConfiguration : Failure #5. Unable to connect to Keycloak.

282025-03-25 15:09:48.888 WARN 1 — [ main] i.c.i.i.k.c.KeycloakConfiguration : Retrying…

292025-03-25 15:09:48.890 ERROR 1 — [ main] i.c.i.i.k.c.KeycloakConfiguration : Failure #6. Unable to connect to Keycloak.

302025-03-25 15:09:48.890 ERROR 1 — [ main] i.c.i.i.k.c.KeycloakConfiguration : RESTEASY004655: Unable to invoke request: org.apache.http.conn.HttpHostConnectException: Connect to localhost:18080 [localhost/127.0.0.1, localhost/0:0:0:0:0:0:0:1] failed: Connection refused

KeyCloak Log:
2025-03-25 15:11:25,024 WARN [org.jgroups.protocols.TCP] (TcpServer.Acceptor[7800]-1,camunda-keycloak-0-13799) JGRP000006: 10.xxx.22.118:7800: failed accepting connection from peer Socket[addr=/10.xxx.22.118,port=34766,localport=7800]: java.net.SocketException: 10.xxx.22.118:7800: BaseServer.TcpConnection.readPeerAddress(): cookie sent by /10.xxx.22.118:34766 does not match own cookie; terminating connection

Alex_Voloshyn · March 25, 2025, 4:44pm

Is it a new issue? Camunda 8 Keycloak Connection - Unable to connect to Keycloak

nathan.loding · March 25, 2025, 9:27pm

Reopening this topic, as it is different from the previous topic but is missing clarifying detals.

@wvinothkumar - please provide more details about this environment, how it is different from the other one, and any troubleshooting you’ve already tried. Sharing the values.yaml file (at a minimum, the global, identity, and keycloak sections) will be helpful too.