diff --git a/vorgang-manager-server/src/main/resources/bayernid/keycloak-saml-metadata.xml b/vorgang-manager-server/src/main/resources/bayernid/keycloak-saml-metadata.xml
new file mode 100644
index 0000000000000000000000000000000000000000..b5746cf909d209910496f9ffef142f748c9378e9
--- /dev/null
+++ b/vorgang-manager-server/src/main/resources/bayernid/keycloak-saml-metadata.xml
@@ -0,0 +1,25 @@
+<md:EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp">
+<md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+<md:KeyDescriptor use="signing">
+<ds:KeyInfo>
+<ds:KeyName>qO7IAjV9WUVVahQd9b1LGC1jAn9zMWV8oiPeafCAfdM</ds:KeyName>
+<ds:X509Data>
+<ds:X509Certificate>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</ds:X509Certificate>
+</ds:X509Data>
+</ds:KeyInfo>
+</md:KeyDescriptor>
+<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml/resolve" index="0"/>
+<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml"/>
+<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml"/>
+<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml"/>
+<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml"/>
+<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
+<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
+<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat>
+<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml"/>
+<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml"/>
+<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml"/>
+<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://sso.dev.by.ozg-cloud.de/realms/by-antragsraum-idp/protocol/saml"/>
+</md:IDPSSODescriptor>
+</md:EntityDescriptor>
\ No newline at end of file