Authelia uses a username and password for a first factor method. This section describes configuring this.
There are two ways to integrate Authelia with an authentication backend:
- LDAP: users are stored in remote servers like OpenLDAP, OpenDJ, FreeIPA, or Microsoft Active Directory.
- File: users are stored in YAML file with a hashed version of their password.
authentication_backend: refresh_interval: 5m password_reset: disable: false custom_url: ""
duration 5m not required
This setting controls the interval at which details are refreshed from the backend. Particularly useful for LDAP.
boolean false not required
This setting controls if users can reset their password from the web frontend or not.
string not required
The custom password reset URL. This replaces the inbuilt password reset functionality and disables the endpoints if this is configured to anything other than nothing or an empty string.
The file authentication provider.
The LDAP authentication provider.