proxmox
Secure authentication for EVERYTHING! // Authentik
Secure authentication for EVERYTHING! // Authentik
#Secure #authentication #Authentik
“Christian Lempa”
In this YouTube video, we’ll cover authentik, an open-source identity provider that allows for secure login to administrative services and web applications. With this setup, users only need to sign in once and can access all their services without having to log in multiple times. This not only…
source
To see the full content, share this page by clicking one of the buttons below |
Hey, i tried using authentik for grafana but i cant seem to get it to work and cant find solution anywhere so i wanna try to ask you if can please help. After logging in with authentik i get an error message saying "Client ID Error
The client identifier (client_id) is missing or invalid.". Has anyone faced this issue?
Great video, as always!
This one is sick! +100
Hey Christian, wie immer großartig 😉
Ich habe Authentik direkt in meinem Homelab in Kubernetes deployed und nutze es global für mein Homelab und habe es auch mit meinem Traefik Ingress Controller verbunden. Einfach nur genial. Aber die Doku von Authentik ist auch echt gut.
Mach weiter so. Du hast mir schon in so vielen Fällen mit Deinen Videos geholfen
OK, so just spent two days setting this up. Having watched your livestream, i think actually in a single user homelab environment authentik has little value and actually adds an additional attack vector, as in addition to the OAuth authentication you still need to keep the traditional login method in place for fallback purposes.
Do you think it could be used to provide MFA to a Microsoft Remote Desktop Gateway?
Thanks Christian, really good video, that convinced me to use Authentik, and SSO over my (almost) entire homelab. Great examples of applications that can be connected to Authentik. One small thing to add here. I had a problem with traefik reverse proxy to Authentik, sometimes it was working, and sometimes not, giving me a "Bad Gateway" response. This was caused by lack of one entry in Authentik server docker file. "traefik.docker.network=frontend". This caused that the default network that traefik will approach my Authentik instance is the one shared between traefik itself and Authentik-server. Maybe this was just my case, but hope this will help others hitting same/similar issue
This is just what i was searching for
I love it…. its tea time. You just coined a new phrase for the channel. I have been waiting for you to create an Authentik video for a while now. Great video!
Hey Christian, how did you make your VSCode look that nice? Vid maybe?
Hi thats for this
can you show how you set up visual studio code to be able to open it so easily against different servers without having to set up an sftp.json
Didn't have a chance to watch yet, but it sounds like just the thing I need, wanted to migrate out of keycloak anyway. Thanks!
Hello and thx for this amazing job. I am working on authentik, but it is not working yet at home, the authentik server and worker say … "Name or service not known" ideas ?
Uh this is nice. especially the "Applications that dont support oauth2". I'm using Keycloak for the most, but many applications only have an own application authentication and no LDAP oder OAuth or SAML
Last year we created an OIDC integration for your managed Kubernetes. It's so cool. Using kube-login you'll get redirected into your browser to login with our keycloak. When you're done you'll see a page telling you that the login succeeded. When you check your terminal it will indeed already have run the last command. It's so cool!
Can you show how you handle ssh authentication on Linux servers using authentik
Any reason you picked Authentik over Authelia?
so now if someone hit that, all the services become unavailable. nice
I have no words, except the "Thank You!". Thank You!
Nice video! Thank you for this job!
Amazing Chris! Thanks for sharing
Which VSCode theme is that?
Great video! 😊. Also where did you get that hoody! ❤
Also any tips on migrating a docker image to a new vps server. I did it yesterday, but I couldn't access the services as expected post migration. Docker showed everything was running, but I couldn't access the ports?!
Thanks!
Thanks Christian. Just added nodes to Wazuh and can't stop smiling. Traefik and Authentik are next. Really appreciate your work!
Thanks
I'd appreciate an SSO solution that besides web-services it also covers Linux and Windows OS clients… I'm trying to integrate everything in my home because people keep forgeting their usernames/passwords for the love of God.
Danke. Your videos are always welcomed, and so much to learn on a lot of topics.
I still cannot get this working with Portainer. I've followed every single step, but getting Unauthorized when clicking Log in with OAuth. I can't find any solution 🙁
Please do a video with keycloak, if possible.
Thanks for this video, Christian. I'm not sure how you knew I had just installed Authentik, but I'm glad you did 🙂
Thanks for sharing this presentation!
Is it on prem ?
I've my homelab with Zitadel + passkeys, passwords and 2FA is so 1980's.
Personally, I haven’t found anything easier to setup than Caddy + Authelia for my small homelab (plus custom Tailscale domain login).
I will give this a go some other time! Thank you
How its work with teleport.
Super helpful, as always!!
So cool, I deployed Authentik one week ago and was playing around a little and now you come with this great video. Thanks for the "compose cleaning", I was not very comfortable doing it in the first place.
I´ve been waiting for this soooooo long! Thank you!
I was also very confused by their documentation and trial and error with it so far. I've tried Jim's Garage and others but they seem to do things a bit different from what you do, which is more like my server setup as well. Appreciate your insight and guidiance
Awesome Video, thank you. This takes the fear of Auth-Providers from a lot of people. Great solution, well implemented and like always awesome presentation of this lovely peace of tech 🙂