User Tools

This is an old revision of the document!

Authelia

Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.

This is not simple stuff and it require some understanding of what you are doing: just copy-pasting configurations and finger-crossing will not work and only lead to frustration.

I strongly suggest you read the very good Get Started page and the linked references before you proceed.

Installation

First of all, your NGINX must be compiled with auth_request module, but if you followed my NGINX guide (here), you are all set.

While Authelia support docker images, there is really no reason to use a container since it's a single executable that you can simply download and start. So let's install on bare-metal!

As usual, let's create a dedicated user: 

useradd -m authelia

in this case, you should let the home folder be under the /home/authelia since this is an authentication service, you want to have it always working even if the /media folder doesn't mount for any reason.

Now it's time to download the latest release from https://github.com/authelia/authelia/releases and install it under user bin folder: 

su - authelia
wget https://github.com/authelia/authelia/releases/download/vX.Y.Z/authelia-vX.Y.Z-linux-amd64.tar.gz
mkdir bin config db logs
cd bin
tar xvf ../authelia-vX.Y.Z-linux-amd64.tar.gz

Now you need to copy the provided example configuration and edit to your needs: 

cd bin/config-example.yml configuration.yml

As an example, here is it:

configuration.yml






creare file configuration.yml (vedi esempio)





lancia authelia





crea file org.gardiol/authelia_proxy.conf (file)
crea file org.gardiol/login/login.conf (file)
crea org.gardiol/authelia_location.conf (file)
crea org.gardiol/authelia_authrequest.conf (file)





configura ogni subdomain auth





Creazione passwords: 
./authelia-linux-amd64 crypto hash generate –help





authelia


#!/sbin/openrc-run
# Copyright 1999-2021 Gentoo Authors
# Distributed under the terms of the GNU General Public License v2

description="Authelia - authenticator"
pidfile="/run/authelia.pid"
command_background=true
command="/home/authelia/bin/authelia-linux-amd64"
command_args="--config /home/authelia/configuration.yml"
command_user="authelia:authelia"

depend() {
        need net
}










			

			
		

	

	
	

		

			
			This website uses technical cookies only. No information is shared with anybody or used in any way but provide the website in your browser.
		

		

			
			More information