diff --git a/.env.example b/.env.example
index 03e6d4d..940a6d0 100644
--- a/.env.example
+++ b/.env.example
@@ -36,3 +36,7 @@ SERVALA_EMAIL_SSL='False'
 
 # If the default OrganizationOrigin is **not** the one with the database ID 1, set it here.
 SERVALA_DEFAULT_ORIGIN='1'
+
+SERVALA_KEYCLOAK_CLIENT_ID='portal.servala.com'
+SERVALA_KEYCLOAK_CLIENT_SECRET=''
+SERVALA_KEYCLOAK_SERVER_URL=''
diff --git a/src/servala/settings.py b/src/servala/settings.py
index 6732c95..82452cc 100644
--- a/src/servala/settings.py
+++ b/src/servala/settings.py
@@ -64,6 +64,22 @@ EMAIL_USE_SSL = os.environ.get("SERVALA_EMAIL_SSL", "False") == "True"
 
 SERVALA_DEFAULT_ORIGIN = int(os.environ.get("SERVALA_DEFAULT_ORIGIN", "1"))
 
+SOCIALAUTH_PROVIDERS = {
+    "openid_connect": {
+        "APPS": [
+            {
+                "provider_id": "keycloak",
+                "name": "VSHN Account",
+                "client_id": os.environ.get("SERVALA_KEYCLOAK_CLIENT_ID"),
+                "secret": os.environ.get("SERVALA_KEYCLOAK_CLIENT_SECRET"),
+                "settings": {
+                    "server_url": os.environ.get("SERVALA_KEYCLOAK_SERVER_URL"),
+                },
+            }
+        ]
+    }
+}
+
 #######################################
 #   Non-configurable settings below   #
 #######################################