diff --git a/docker-compose.yml b/docker-compose.yml
index c5412db..cc2c49d 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -39,7 +39,7 @@ services:
 
                 -Dauthentication.chain=aims:identity-service,builtin:alfrescoNtlm
                 -Didentity-service.authentication.defaultAdministratorUserNames=admin.1
-                -Didentity-service.auth-server-url=http://identity:8080/auth
+                -Didentity-service.auth-server-url=${IDENTITY_SERVICE_BASEURL}/auth
                 
                 -Dsystem.content.eagerOrphanCleanup=true
                 -Dsystem.content.orphanProtectDays=0
@@ -68,8 +68,8 @@ services:
                 -Dalfresco.protocol=${PROXY_PROTOCOL}
                 -Daims.enabled=true
                 -Daims.realm=alfresco
-                -Daims.resource=alfresco
-                -Daims.authServerUrl=http://identity:8080/auth
+                -Daims.resource=acs-share
+                -Daims.authServerUrl=${IDENTITY_SERVICE_BASEURL}/auth
                 -Daims.sslRequired=none
                 -Daims.publicClient=true
                 -Daims.autodetectBearerOnly=true
diff --git a/keycloak-alfresco-realm.json b/keycloak-alfresco-realm.json
index 198f54a..43cb8ae 100644
--- a/keycloak-alfresco-realm.json
+++ b/keycloak-alfresco-realm.json
@@ -27,6 +27,21 @@
       "attributes": {
         "login_theme": "alfresco"
       }
+    },
+    {
+      "clientId": "acs-share",
+      "name": "ACS Share",
+      "enabled": true,
+      "alwaysDisplayInConsole": false,
+      "redirectUris": [ "*" ],
+      "standardFlowEnabled": true,
+      "implicitFlowEnabled": false,
+      "directAccessGrantsEnabled": false,
+      "publicClient": true,
+      "protocol": "openid-connect",
+      "attributes": {
+        "login_theme": "alfresco"
+      }
     }
   ],
   "requiredCredentials": [ "password" ],