diff --git a/dockerfiles/init/modules/openshift/files/scripts/multi-user/configure_and_start_keycloak.sh b/dockerfiles/init/modules/openshift/files/scripts/multi-user/configure_and_start_keycloak.sh
index 605ac6f36a5..8001651693a 100755
--- a/dockerfiles/init/modules/openshift/files/scripts/multi-user/configure_and_start_keycloak.sh
+++ b/dockerfiles/init/modules/openshift/files/scripts/multi-user/configure_and_start_keycloak.sh
@@ -8,15 +8,38 @@
 
 set -e
 
+# append_before_match allows to append content before matching line
+# this is needed to append content of yaml files
+# first arg is mathing string, second string to insert before match
+append_before_match() {
+    while IFS= read -r line
+    do
+      if [[ "$line" == *"$1"* ]];then
+          printf '%s\n' "$2"
+      fi
+      printf '%s\n' "$line"
+    done < /dev/stdin
+}
+
 COMMAND_DIR=$(dirname "$0")
 
+TLS_SETTINGS="  tls:
+    termination: edge
+    insecureEdgeTerminationPolicy: Allow"
+
+CHE_SERVER_ROUTE_TLS=$(oc get route che -o jsonpath='{.spec.tls}' || echo "")
+if [ "${CHE_SERVER_ROUTE_TLS}" != "" ]; then
+  oc get route/keycloak -o yaml | \
+  append_before_match "wildcardPolicy:" "${TLS_SETTINGS}" | \
+  oc replace -f -
+fi
+
 if [ "${CHE_SERVER_URL}" == "" ]; then
   CHE_SERVER_ROUTE_HOST=$(oc get route che -o jsonpath='{.spec.host}' || echo "")
   if [ "${CHE_SERVER_ROUTE_HOST}" == "" ]; then
     echo "[CHE] **ERROR**: The Che server route should exist before configuring the Keycloak web origins"
     exit 1
   fi
-  PROTOCOL=CHE_SERVER_ROUTE_TLS=$(oc get route che -o jsonpath='{.spec.tls}' || echo "")
   if [ "${CHE_SERVER_ROUTE_TLS}" == "" ]; then
     CHE_SERVER_URL="http://${CHE_SERVER_ROUTE_HOST}"
   else