diff --git a/.secrets.baseline b/.secrets.baseline
index f067bb32b..e216bebb1 100644
--- a/.secrets.baseline
+++ b/.secrets.baseline
@@ -134,7 +134,7 @@
         "filename": "molecule/identity/verify.yml",
         "hashed_secret": "3f42f2d120c36646b79792b8dccee509e1480ad0",
         "is_verified": false,
-        "line_number": 44,
+        "line_number": 45,
         "is_secret": false
       }
     ],
@@ -279,5 +279,5 @@
       }
     ]
   },
-  "generated_at": "2023-10-16T09:05:33Z"
+  "generated_at": "2023-10-16T14:08:22Z"
 }
diff --git a/molecule/identity/verify.yml b/molecule/identity/verify.yml
index 31aa7c8af..67b87b6e9 100644
--- a/molecule/identity/verify.yml
+++ b/molecule/identity/verify.yml
@@ -16,6 +16,7 @@
         that:
           - ansible_facts.services['alfresco-content.service'].state == "running"
           - ansible_facts.services['keycloak.service'].state == "running"
+          - ansible_facts.services['nginx.service'].state == "running"
 
     - name: Retrieve contents of alfresco-global.properties
       become: true
@@ -99,3 +100,20 @@
           - "not share_config_xml['results'][3]['matches'][0]['secret']"
           - "share_config_xml['results'][4]['matches'][0]['authServerUrl'] == 'http://localhost/auth'"
           - "share_config_xml['results'][5]['matches'][0]['publicClient'] == 'true'"
+
+    - name: Retrieve share login page
+      ansible.builtin.uri:
+        url: "http://localhost/share"
+        return_content: true
+      register: this
+
+    - name: Assert keycloak login redirect
+      vars:
+        expected_url_prefix: http://localhost/auth/realms/alfresco/protocol/openid-connect/auth?response_type=code&client_id=alfresco&scope=openid
+        expected_login_submit: http://localhost/auth/realms/alfresco/login-actions/authenticate
+      ansible.builtin.assert:
+        quiet: true
+        that:
+          - this.redirected
+          - expected_url_prefix in this.url
+          - expected_login_submit in this.content