First Factor
Authelia uses a username and password for a first factor method. This section describes configuring this.
There are two ways to integrate Authelia with an authentication backend:
- LDAP: users are stored in remote servers like OpenLDAP, OpenDJ, FreeIPA, or Microsoft Active Directory.
- File: users are stored in YAML file with a hashed version of their password.
Configuration
This section is intended as an example configuration to help users with a rough contextual layout of this configuration section, it is not intended to explain the options.
The configuration shown may not be a valid configuration, and you should see the options section below and the navigation links to properly understand each option individually.
authentication_backend:
refresh_interval: 5m
password_reset:
disable: false
custom_url: ""
Options
This section describes the individual configuration options.
refresh_interval
duration
5m
not required
This setting controls the interval at which details are refreshed from the backend. Particularly useful for LDAP.
password_reset
disable
boolean
false
not required
This setting controls if users can reset their password from the web frontend or not.
custom_url
string
not required
The custom password reset URL. This replaces the inbuilt password reset functionality and disables the endpoints if this is configured to anything other than nothing or an empty string.
file
The file authentication provider.
ldap
The LDAP authentication provider.