End-to-End Visibility with Event-Aware Observability

Track identity events, access decisions, and policy executions with Kafka-native streaming and full OpenTelemetry instrumentation.

Streaming-Aware Logging and Distributed Tracing with Kafka, OpenTelemetry, and SigNoz

Why It Matters

In identity and access management systems, auditing and troubleshooting are mission-critical. With Keymate, observability is not an afterthought—it is built in:

Keymate turns every access decision, session event, or organization update into a traceable, structured event that can be logged, visualized, and monitored in real time.

Key Components:

Full support for OpenTelemetry traces, logs, and metrics

Kafka-based event publishing and consumption architecture

Correlation between user actions, policy decisions, and token events

Seamless integration with SigNoz and distributed tracing tools

Stream, Trace, and Visualize IAM Activity

Use Cases: Distributed debugging of access failures, Audit trail for user and role changes, Monitoring slow or failing authentication flows, Alerting on suspicious behavior or token misuse.

Key Components:

Events are generated across Keymate and Keycloak components

Custom EventStoreProviders write them to an outbox table

Kafka-compatible microservices read and process these events

OpenTelemetry traces are generated and pushed to SigNoz

Admins can explore traces per user, org, or resource in real-time

Integration Highlights

Kafka-Based Streaming

All identity and access events are emitted to Kafka topics

Structured Logging

INFO / WARN / ERROR logs with event context and request metadata

OTEL Traces

OpenTelemetry spans for login, token issuance, policy evaluation

SigNoz Support

Native export to SigNoz UI for queryable, filterable traces

Event Filtering

Only scoped, policy-relevant events are streamed for efficiency

Policy-Aware Logging

Logging decisions include context such as resource ID, action, org, and risk score

Frequently Asked Questions

No. All Keymate services ship with pre-instrumented OpenTelemetry support.

We recommend it, but you can use any OTEL-compatible backend like Jaeger, Grafana Tempo, or Honeycomb.

Yes. Our Kafka publisher supports per-tenant and per-event-type filtering.

Keymate offers structured, correlated, and traceable observability—not raw log files.

How to Use This Integration

Implementation Steps

Deploy Keymate and Kafka with your preferred broker setup

Enable outbox-based event publishing via our EventStoreProvider

Configure OTEL exporters to your chosen backend (SigNoz, Jaeger, etc.)

Use provided dashboards or integrate into your own observability tools

Extend your tracing with custom event emitters from your apps or plugins

ELEVATE YOUR IAM STRATEGY

Ready to Transform Your Keycloak Experience?

Implement fine-grained authorization, multi-tenant infrastructure, and comprehensive security policies with Keymate — built on the Keycloak foundation you already trust.