AW Groups

In this hands-on workshop, you'll learn how to create scalable organizational structures using Keycloak Groups to represent the Adventure Works company hierarchy. We'll walk through building hierarchical groups where users automatically inherit roles and permissions based on their organizational membership, demonstrating how proper group structure makes user management scalable across enterprise environments.

By the end of this workshop, you will be able to:

• Create hierarchical group structures in Keycloak that mirror organizational charts

• Implement scalable user management through group-based role inheritance

• Configure parent-child group relationships for complex organizational hierarchies

• Build the foundational "WHO" component of enterprise identity management

• Design group structures that automatically assign permissions when users join teams

• Create sustainable user provisioning workflows for large organizations

Workshop Structure: You'll create the complete Adventure Works organizational hierarchy including:

• AdventureWorks_Organization (root)

• Sales_Division with Sales_Managers and Sales_Analysts

• HR_Division with HR_Managers and HR_Specialists

• Data_Governance with Data_Stewards and Compliance_Officers

• IT_Operations with System_Administrators

This workshop establishes the organizational foundation that enables automatic permission inheritance—when someone joins the Sales team, they simply get added to the Sales group and automatically receive all sales-related permissions without manual role assignment.