Authentik
authentik is an open-source identity provider and access management system. It allows centralized authentication and authorization for web applications and services. authentik is self-hosted, customizable, and integrates with Linux systems.
authentication
authorization
identity-provider
access-management
selfhosted
customizable
integrates-with-linux
Authentik: Open-Source Identity Provider
An open-source identity provider and access management system for centralized authentication and authorization of web applications and services, self-hosted with customization options and Linux integration.
What is Authentik?
authentik is an open-source identity and access management solution that allows organizations to centrally manage user authentication and authorization for applications, services, and infrastructure. It provides a web interface and API to handle authentication, single sign-on, multi-factor authentication, user management, policies, workflows, and auditing.
Some key features of authentik include:
- Integration with LDAP, Active Directory, SAML, OAuth, and OpenID Connect
- Multi-factor authentication with TOTP, WebAuthn, and other methods
- Customizable login, error, and account pages
- Role-based access control policies
- Auditing and reports for security and compliance
- Self-hosted and integrates with Linux systems like SELinux and PAM
- Backups and replication for high availability
- Clustering support and horizontal scaling capabilities
As an open-source project, authentik is customizable to specific use cases and requirements. It can replace proprietary identity providers and allows organizations to avoid vendor lock-in. With robust access controls and security features, authentik enables centralized identity management to improve efficiency and reduce costs compared to managing users across individual applications.
Authentik Features
Features
- Single sign-on
- Multi-factor authentication
- User management
- Group management
- Access control policies
- Integration with LDAP, SAML, OAuth
- Web and desktop clients
Pricing
- Open Source
Pros
Open source and self-hosted
Highly customizable and extensible
Integrates with Linux systems
Supports many authentication protocols
Granular access control
Cons
Complex initial setup
Requires hosting infrastructure
Limited documentation and support
Official Links
The Best Authentik Alternatives
Top Security & Privacy and Identity & Access Management and other similar apps like Authentik
Here are some alternatives to Authentik:
Suggest an alternative ❐
Keycloak
Keycloak is an open source identity and access management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. Features include:Single sign-on - Log in once to access multiple applicationsIdentity brokering - Social login, LDAP, Active Directory supportUser federation...
Okta
Okta is a cloud-based identity and access management (IAM) platform that enables organizations to securely connect the right people to the right technologies. It provides a single sign-on gateway to applications, multi-factor authentication for added security, universal directory to store user profiles, lifecycle management capabilities, and much more.Key features and...
FreeIPA
FreeIPA is an integrated security information management solution based on MIT Kerberos, 389 Directory Server, Dogtag certificate system, NTP and DNS. It provides centralized authentication, authorization and account information by storing data about user, groups, hosts etc. in a centralized LDAP directory.Key features of FreeIPA include:Centralized user authentication via KerberosRole...
Authelia
Authelia is an open-source authentication and authorization server designed to centralize authentication and authorization for web applications and services. It acts as a proxy that sits in front of web apps and requires users to authenticate before allowing access.Some key features of Authelia include:Single sign-on - Users only need to...
Amazon Cognito
Amazon Cognito is a cloud service from AWS that provides user identity and data synchronization across devices. It allows developers to add user sign-up, sign-in, and access control to their web and mobile applications quickly and easily.Some of the key features of Amazon Cognito include:User identity management - Cognito provides...
ZITADEL
ZITADEL is an open-source identity and access management (IAM) solution designed for modern applications and environments. It enables organizations to centralize the management of user identities, authentication, and authorization.Some key features and benefits of ZITADEL include:User management - Create, manage, and delete user accounts from a central UI or APIsAuthentication...
Microsoft Entra ID
Microsoft Entra ID is an identity and access management (IAM) solution from Microsoft that provides capabilities for managing user identities and controlling access to applications and resources. Some of the key features of Entra ID include:Single sign-on (SSO) - Users can sign in once with one set of credentials to...
IdentityServer
IdentityServer is an open source OpenID Connect and OAuth 2.0 framework for ASP.NET Core, aimed to help developers build security token services. It enables single sign-on, API access control and user profile management for web sites, web APIs and native/mobile applications.Some key features of IdentityServer include:Supports OpenID Connect for authentication...
FusionAuth
FusionAuth is an open source authentication and user management platform for building secure web and mobile applications. Some key features include:User registration and login with support for social login, multi-factor authentication, and moreSingle sign-on (SSO) across applications and APIsUser management for organizing users into groups and teams with role-based access...
AWS Identity and Access Management
AWS Identity and Access Management (IAM) is a web service that helps AWS customers securely control access to AWS resources. With IAM, you can centrally manage users, security credentials such as access keys, and permissions that control which AWS resources users can access.Some key capabilities of IAM include:Centralized control of...
Gluu Server
Gluu Server is an open source identity and access management (IAM) platform used by organizations to manage user identities, access controls and authentication across applications, services and APIs. It provides centralized user management, single sign-on (SSO), multi-factor authentication (MFA), user provisioning and other identity capabilities out-of-the-box.Some key features of Gluu...
LemonLDAP::NG
LemonLDAP::NG is an open source single sign-on and access management solution developed in Perl. It provides a centralized authentication server that allows users to sign in once and access multiple applications and services without having to log in again.Some key features of LemonLDAP::NG include:Single sign-on (SSO) - Users sign in...
UniFi Identity (UID)
UniFi Identity (UID) is an identity and access management solution developed specifically for Ubiquiti Networks' UniFi ecosystem of IT infrastructure products. It provides a centralized way to manage user accounts and access policies across UniFi Network, UniFi Protect, UniFi Access, and other supported UniFi services.Key features of UniFi Identity include:Centralized...
OneLogin
OneLogin is a cloud-based identity and access management (IAM) platform that helps organizations manage user identities, access, and permissions. Here are some key things to know about OneLogin:It provides single sign-on (SSO) so users can access all their cloud apps and tools with one set of login credentials.It has multi-factor...
OpenAM
OpenAM is an open source access management and federation software platform used by organizations to ensure appropriate access to resources across modern heterogeneous IT environments. It enables users to authenticate once and gain access to multiple applications and systems.Some key capabilities and benefits of OpenAM include:Single sign-on (SSO) - Users...
Stormpath
Stormpath is an API-first developer authentication and user management platform designed to help developers securely manage user identities and access control in web and mobile applications. The service provides a REST API along with SDKs for popular frameworks that allow developers to easily add user registration and login, social login,...
LoginRadius
LoginRadius is a customer identity and access management (CIAM) platform designed to secure, manage and control access to web, mobile and IoT applications. It provides a unified interface to handle user registration, authentication, single sign-on (SSO), user management, analytics and more across devices and platforms.Key features of LoginRadius CIAM include:Support...
HelloID
HelloID is an identity and access management (IAM) platform that centralizes the management of user identities, access privileges, governance and administration. Some of the key capabilities of HelloID include:Single sign-on (SSO) - HelloID provides secure single sign-on access to applications and systems through standards like SAML 2.0, OpenID Connect and...
Meveto Inc
Meveto Inc is an American technology company founded in 2018 that aims to provide ethical alternatives to dominant tech giants like Google, Facebook and Microsoft. Their products focus on user privacy, open-source code, and decentralized systems.Their flagship product is the Meveto Browser - a free, open-source web browser built with...
Connect2id Server
Connect2id Server is an open source identity and access management solution used for user authentication, authorization and federated single sign-on. It supports industry standard protocols like OAuth 2.0, OpenID Connect and SAML 2.0 to integrate with client applications and identity providers.Some key features of Connect2id Server include:User authentication with username/password,...
10Duke Identity Bridge
10Duke Identity Bridge is an identity and access management solution designed to connect on-premises directories like Active Directory and other LDAP servers to cloud applications. It serves as a bridge to provide seamless identity integration between different systems.Key features of 10Duke Identity Bridge include:Single sign-on (SSO) - Users can access...
