Page Inspect

Authelia | The Single Sign-On Multi-Factor portal for web apps

Help us fund a security audit.

Authelia

##### Authelia

- Overview
- Configuration
- Integration
- Contributing
- Blog
- Roadmap
- Reference

- Discord
- GitHub

Get started

Get started

# Search

Search

Cancel

Loading search index…

No recent searches

No results for "**Query here**"

- to select
- to navigate
- to close

Search by FlexSearch

# Authelia

Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. Authelia is an OpenID Connect 1.0 Provider which is OpenID Certified™ allowing comprehensive integrations, and acts as a companion for common reverse proxies.

Get started

Open-source Apache 2.0 Licensed. GitHub v4.39.4

## Lightweight 🪶

With a compressed container size smaller than 20 megabytes and observed memory usage normally under 30 megabytes, it's one of the most lightweight solutions available.

## Blazing Fast ⚡

Written in Go and React, authorization policies and many other backend tasks are completed in mere milliseconds and login portal loading times of 100 milliseconds makes it one of the fastest solutions available.

## Efficient ♻

Processors can use a lot of electricity, but when idle usage is basically so low that you can't measure it, and active usage in a small business environment being under 1% you can rest easy (with the exclusion of password hashing).

## Security by Design 🔒

Not just another IAM portal, security is heavily considered as part of our design process.

## Login Regulation 🛡️

Prevent brute force login attempts by only allowing a certain number of logins before the user is locked for a period.

## Password Reset 📧

Built-in support for users to reset their LDAP or internal passwords with email validation right from the web interface.

## Single Sign-On 🎟️

Allow your users the convenience of just being required to login once to a wide range of web applications via a session cookie, OpenID Connect 1.0, or Trusted Headers.

## Authorization Policies 👮

Control which users and groups have access to which specific resources or domains with incredibly granular policy definitions.

## Identity Validation ✔

Users who have not configured a second-factor device are required to validate their identity via an email reducing the chance an attacker could exploit a lazy user.

## Scalability ⚙

Designed with high availability in mind, deployment options exist to easily allow multiple parallel containers on lifecycle management platforms like Kubernetes.

## Multi-Factor and Passwordless Authentication 🗝️

Support for passwordless authentication via Passkeys and multiple second-factor methods including One Time Passwords, Mobile Push Notifications, and WebAuthn.

## Intuitive User Interface 💡

The login portal is super straight forward and the workflow is completely transparent to your users.

## Support Authelia

Help support the Authelia project obtain formal security audits and accreditations by becoming a financial contributor.

Contribute

## Latest from the Authelia blog

### We are now OpenID Certified™

This is a very important and exciting milestone for the Authelia project.

May 18, 2025 in News, Announcements by James Elliott 6 minutes

### 4.39: Release Notes

Authelia 4.39 has been released and the following is a guide on all the massive changes.

March 16, 2025 in News, Release Notes by James Elliott and Brynn Crowley 13 minutes

### Authelia + Traefik Setup Guide

In this guide we will walk through setting up Authelia with Traefik as the reverse proxy. This guide aims to provide an opinionated way to setup Authelia that is fully supported by the Authelia team.

January 3, 2025 in Guides by Brynn Crowley 8 minutes

- Privacy Policy
- Security Policy
- Versioning Policy
- Code of Conduct
- About
- Contact

- Powered by Netlify, Hugo, and Thulite. Copyright © 2016-2025 Authelia.

Top