...
Once you install the plugin, You need to whitelist the external API call so SAML API can be accessed from the end-users browser.
Plugin Configuration
...
Open settings-> Directory Manager Settings-> Select Plugin-> Choose SAML Directory Manager - 6.0.1
SAML Directory Configuration setting screen will open. You will be required to copy the SAML API URL. This is required to create a client in the Keycloat.
IDP Certificates need to be copied from the admin console of the keycloak. Open your KeyCloak admin console->Realm Settings ->Keys Tab -> Click on the Certificate RSA 256 Key.
Paste this value in the IDP Certificate field.
...
Open the Keycloak admin console -> Clients-> Create
Please use the following configuration
Client ID: SAML JOGET API URL
Name: Optional
...
IDP Initiated SSO URL Name: SAML JOGET API URL
To test configuration, you can copy the target IDP initiated SSO URL and paste it in incognito mode of browser and login to keycloak, If all is good you will be redirected to Joget home page with login.
...
Open the Mapper tab on the client configuration. Add the Built-in mappings 
You need to define the names for each option so joget will be able to handle the values
...
To make it easier for your user to access the keycloak login page, You can add an option in your joget Login screen to open the KeyCloak Authentication Page.
Open your AppCenter in userview builder-> Settings-> Login Page UI -> Add the Custom HTML under the login form.
