Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. Authelia is an OpenID Connect 1.0 Provider which is OpenID Certified™ allowing comprehensive integrations, and acts as a companion for common reverse proxies.
Get startedWith a compressed container size smaller than 20 megabytes and observed memory usage normally under 30 megabytes, it's one of the most lightweight solutions available.
Written in Go and React, authorization policies and many other backend tasks are completed in mere milliseconds and login portal loading times of 100 milliseconds makes it one of the fastest solutions available.
Processors can use a lot of electricity, but when idle usage is basically so low that you can't measure it, and active usage in a small business environment being under 1% you can rest easy (with the exclusion of password hashing).
Not just another IAM portal, security is heavily considered as part of our design process.
Prevent brute force login attempts by only allowing a certain number of logins before the user is locked for a period.
Built-in support for users to reset their LDAP or internal passwords with email validation right from the web interface.
Allow your users the convenience of just being required to login once to a wide range of web applications via a session cookie, OpenID Connect 1.0, or Trusted Headers.
Control which users and groups have access to which specific resources or domains with incredibly granular policy definitions.
Users who have not configured a second-factor device are required to validate their identity via an email reducing the chance an attacker could exploit a lazy user.
Designed with high availability in mind, deployment options exist to easily allow multiple parallel containers on lifecycle management platforms like Kubernetes.
Support for passwordless authentication via Passkeys and multiple second-factor methods including One Time Passwords, Mobile Push Notifications, and WebAuthn.
The login portal is super straight forward and the workflow is completely transparent to your users.
Help support the Authelia project obtain formal security audits and accreditations by becoming a financial contributor.
This is a very important and exciting milestone for the Authelia project.
May 18, 2025 in News, Announcements by James Elliott6 minutes
Authelia 4.39 has been released and the following is a guide on all the massive changes.
March 16, 2025 in News, Release Notes by James Elliott and Brynn Crowley13 minutes
In this guide we will walk through setting up Authelia with Traefik as the reverse proxy. This guide aims to provide an opinionated way to setup Authelia that is fully supported by the Authelia team.
January 3, 2025 in Guides by Brynn Crowley8 minutes
