What do you guys think of Authentik? Alreayd using it? Let us know in the comments! Thanks for watching and being part of IBRACORP! ➡Subscribe on our website if you want to support us: ibracorp.io ➡Join us on Discord: discord.gg/VWAG7rZ Please don't forget to like and subscribe to help us help you! 👍
thanks for the good explanation could you please help us in understanding can we use both ad authentication + Authentik at the same time ? like first login goes to adfs page if we passthrough then to Authentik as secondary authentication.
This is by far the most complicated thing I've ever set up, but this video helped me so much. Just one note for anyone reading this being confused, redis doesn't appear to have a password field anymore at the time of writing this, which the authentik worker doesn't care about, but the server portion does. In order to fix this, follow these steps: - in your redis container, hit advanced - in the "post arguments" field, paste the following: redis-server --requirepass password - Replace "password" with the password you'd like to use, and then you can plug that into the authentic redis password field, and it will work. :)
I will install and give it a go, but I am disappointed you did not do a deep dive on how to use it or integrate it into other apps. Please do a follow up for a more in depth guide as always love the content easy to follow and a pleasure watching.
YES! Finally!!! Please explore this one more as it is quite powerful but lacks a lot of documentation on their end really and been looking into deploying this with integration against Windows AD but without luck.
Same thoughts here ! I'm using traefik with authelia, without issues. What would be the benefits of switching from authelia to authentik ? Does it work well with traefik ?
@@newkindofworld some benefits are that it has way more auth protocols such as ldap, basic auth, saml2, etc. to integrate with applications. it has a management ui, so less need to mess with config files. it also has a built in application dashboard that will only show the applications which the specific user has access to.
Definitely would love to see more content related to authentik in the future! Following their documentation is certainly a chore, and when you add in the extra complexity of running this on Unraid it's downright difficult to understand how to get simple applications up and running.
Thanks for cool viseo , will be very interesting to see how to use Aunthetik in work with NPM setting and other ways setups with identification providers.
Excellent, as always! Love the look of their dashboard. Do you know if you need to add worker containers as your install grows (users, applications for auth, etc?), of does the one container scale to handle increased usage?
This app loks amazing. Look forward to seeing more about the setup for it. I know they have good docs but I understand it so much more in video form. Especially the way you format it.
@IBRACORP This Unraid container do not work. Because, no Docker Outpost Connection possible (State Unhealthy) with latest stable Authentik version 2023.3.1. All applications are not Forwarded Auth. I have the same configuration on open mediavault and portainer, and work fine with a good Docker Service-Connection Outpost (state 23.0.1). Please test it because on Unraid applications server, do not work.
To get to the initial setup page using HTTPS, I needed to use port 9443 instead of 9000, as shown in the video and in the instructions for the authentik container. 9000 works when specifying HTTP, but it isn't secure.
Awesome content as always! I have learned so much from your videos. Thank you so much. Please continue this series and perhaps next time show us how to set this up with Nginx and other Unraid Apps such as Nextcloud, Bitwarden etc.
Your channel turned me on to nginx proxy manager and authelia, so this looks great as a more fully featured and supportable authelia replacement. I would like to see more on it for integrating with a reverse proxy like npm and using back end authentication methods. Looks like maybe with this we don’t even need npm anymore?
Yeah, would really like to see a follow up to this video as how to replace Authelia with this one. I also followed Ibracorp's video how to setup Traefik + Authelia so would really like to try this out and maybe replace Authelia all together
Your Authelia and Authentik entries in Traefik should be separate and told you choose to switch to Authentik you can comment out your Authelia config instead of deleting it “just in case”. When trying something new you should never wipe your working config until you are happy and have a working system then add an extra length of time.
Just fyi, when you are initially logging into your server locally, mine was http. not secure. Unsure if that makes a huge impact or not as I am local. Will be directing a cloudflare tunnel at this for my reverse proxy.
If you're like me and made an error when making the postgres DB with a different password, changing it after in the template didn't help. I had to clear the appdata folder for postgres to get the correct password filled in. (This also resets that whole DB, so don't do this if you're already using postgres before this video)
Hey Man, Great Video, I am curious how to get this working with HA proxy? Also I noticed that you that outpost integration configured? is this something we need to do to get it working?
Just moved from Tassie to Geelong and UA-cam started recommending your videos to me suddenly. So glad it did, fantastic content. Will supplement Spaceinvaderones tutorials well.
It worked for a while, but now I can only access certain parts in the admin UI. Not sure if this is something I did, or if this is just not quite ready for use.
set up the worker following your tutorial and it looks like it's not starting correctly, when accessing the logs, it's just closing the window. Resource usage is a 0% CPU and 0B /0B Memory eventhough the docker is started.
Ok, as long as postgres is not connected, everything works fine, beside the errors in the logs because postgres is not connected. As soon as postgres is connected, the worker stops working but still is shown as running
I like the tutorials mostly too bad a lot of them are done in unraid instead of "normal" docker compose. With how they do it in unraid around 80% says nothing on how to do it in plain compose.
Ive watched most of your videos. While they all seem to be missing some tiny thing here or there, they were informative and enough to get moving on. This video however was just an absolute waste of time, didn't feel well researched, wasn't documented. You are better than this, don't fall the way of everyone else, stick to what got you to be a go to source.
Incase like mine Redis does't start for you add this (Found in the advanced View) Add this to Post Arguments in the template: redis-server --requirepass password All thanks goes to BlueRyuu on Unraid forum..
I am having an issue with authentik-worker and redis....it is saying {"event": "Redis Connection failed, retrying... (WRONGPASS invalid username-password pair or user is disabled.)", "level": "info", "logger": "authentik.lib.config" I can not figure out how to unlock the user i have verified the password is good. Can anyone help me out?
seems like recent versions of authentik are broken. Tried going back a few releases and still crashes. ak-root/venv/lib/python3.12/site-packages/opencontainers/distribution/reggie/defaults.py:17: SyntaxWarning: invalid escape sequence '('
great guide as always! However, im stuck after installing authentik, log shows:aioredis.errors.ReplyError: WRONGPASS invalid username-password pair or user is disabled dont know where to go from here.
I was having the same issue but I was able to get it working by removing special characters from my redis password. It might only be specific characters it doesnt like but I didnt test it
@Ben James I solved my issue last night by deleting redis container and started over. Either I messed up somewhere och something got corrupted, I don't know. But works now.
What do you guys think of Authentik? Alreayd using it? Let us know in the comments!
Thanks for watching and being part of IBRACORP!
➡Subscribe on our website if you want to support us: ibracorp.io
➡Join us on Discord: discord.gg/VWAG7rZ
Please don't forget to like and subscribe to help us help you! 👍
thanks for the good explanation could you please help us in understanding can we use both ad authentication + Authentik at the same time ? like first login goes to adfs page if we passthrough then to Authentik as secondary authentication.
This is by far the most complicated thing I've ever set up, but this video helped me so much.
Just one note for anyone reading this being confused, redis doesn't appear to have a password field anymore at the time of writing this, which the authentik worker doesn't care about, but the server portion does. In order to fix this, follow these steps:
- in your redis container, hit advanced
- in the "post arguments" field, paste the following:
redis-server --requirepass password
- Replace "password" with the password you'd like to use, and then you can plug that into the authentic redis password field, and it will work. :)
Managed to install it finally! I would love to see some videos on how someone can use it and/or integration with NginxProxyManager
I will install and give it a go, but I am disappointed you did not do a deep dive on how to use it or integrate it into other apps. Please do a follow up for a more in depth guide as always love the content easy to follow and a pleasure watching.
i agree with this because i installed it, tried seeing if i could figure out how to setup the admin panel and got very confused by it
Same, came to this video and it doesnt show how to add apps so it is a incomplete install video.
We have done a complete install video. It's on our channel.
YES! Finally!!! Please explore this one more as it is quite powerful but lacks a lot of documentation on their end really and been looking into deploying this with integration against Windows AD but without luck.
It would be nice to spend more time talking about why I would want to install this versus the mechanics of installing
Same thoughts here !
I'm using traefik with authelia, without issues. What would be the benefits of switching from authelia to authentik ? Does it work well with traefik ?
@@newkindofworld some benefits are that it has way more auth protocols such as ldap, basic auth, saml2, etc. to integrate with applications. it has a management ui, so less need to mess with config files. it also has a built in application dashboard that will only show the applications which the specific user has access to.
@@cereal_experiments Thanks ! How does it integrate with traefik ? As nice and smooth as authelia ?
That's fair feedback, thanks
@@newkindofworld So much than you can think of. Traefik and NPM are the proxies that authentik works well with.
damn it I just got Authelia installed, you're killing me smalls
Worth mentioning when redis doesn't start run 'chmod -R 777 /mnt/user/appdata/redis/* ' from the terminal
Definitely would love to see more content related to authentik in the future! Following their documentation is certainly a chore, and when you add in the extra complexity of running this on Unraid it's downright difficult to understand how to get simple applications up and running.
Thanks for cool viseo , will be very interesting to see how to use Aunthetik in work with NPM setting and other ways setups with identification providers.
Excellent, as always! Love the look of their dashboard. Do you know if you need to add worker containers as your install grows (users, applications for auth, etc?), of does the one container scale to handle increased usage?
Thank you Brian! Not sure on that answer to be honest, let me get back to you on that. Glad you enjoyed it though !
Can you give us a hint on how to config this on npm? Cheers, thanks for the great video, as allways.
This app loks amazing. Look forward to seeing more about the setup for it. I know they have good docs but I understand it so much more in video form. Especially the way you format it.
@IBRACORP This Unraid container do not work. Because, no Docker Outpost Connection possible (State Unhealthy) with latest stable Authentik version 2023.3.1. All applications are not Forwarded Auth. I have the same configuration on open mediavault and portainer, and work fine with a good Docker Service-Connection Outpost (state 23.0.1). Please test it because on Unraid applications server, do not work.
To get to the initial setup page using HTTPS, I needed to use port 9443 instead of 9000, as shown in the video and in the instructions for the authentik container. 9000 works when specifying HTTP, but it isn't secure.
Awesome content as always! I have learned so much from your videos. Thank you so much. Please continue this series and perhaps next time show us how to set this up with Nginx and other Unraid Apps such as Nextcloud, Bitwarden etc.
For sure Ronshi, thank you very much for watching
@@IBRACORP Set this up with Nginx would be really interresting. Tryed it myself, but wasnt able to do it.
@@HeroHakuu also interested in this as well
Absolut legend! Thanks for doing the video and creating the containers. Have authentik running in a VM on Unraid and absolutely love it
Great stuff thanks for watching Mario
Still hoping and waiting for the 'part 2' of Authentik to explain the how-to's and get us home-admins off the ground with how to use it.
Your channel turned me on to nginx proxy manager and authelia, so this looks great as a more fully featured and supportable authelia replacement.
I would like to see more on it for integrating with a reverse proxy like npm and using back end authentication methods. Looks like maybe with this we don’t even need npm anymore?
Yeah, would really like to see a follow up to this video as how to replace Authelia with this one. I also followed Ibracorp's video how to setup Traefik + Authelia so would really like to try this out and maybe replace Authelia all together
@IBRACORP Can you make a video about customize authentik? And how to give permissions to changing icons or background?
Woot! Was hoping for a video of this!
When I visit the setup page I get authentik but it says "not found".
How we use it with traefik should we delete the authelia config in the traefik config?
Your Authelia and Authentik entries in Traefik should be separate and told you choose to switch to Authentik you can comment out your Authelia config instead of deleting it “just in case”.
When trying something new you should never wipe your working config until you are happy and have a working system then add an extra length of time.
Just fyi, when you are initially logging into your server locally, mine was http. not secure. Unsure if that makes a huge impact or not as I am local. Will be directing a cloudflare tunnel at this for my reverse proxy.
Can this replace Authelia as Auth Middleware of Traefik? I've been looking for Traefik with Azure AD, but everything seems to be using Authelia.
If you're like me and made an error when making the postgres DB with a different password, changing it after in the template didn't help. I had to clear the appdata folder for postgres to get the correct password filled in. (This also resets that whole DB, so don't do this if you're already using postgres before this video)
Excellent thanks Rico
thank you for the video but as soon as I arrive at the web page it asks me for an email or an identifier that I don't have??
If I already have Redis running with authelia can I use the same docker?
yes
Hey Man,
Great Video, I am curious how to get this working with HA proxy?
Also I noticed that you that outpost integration configured? is this something we need to do to get it working?
I am getting an error in the postgres logs, database "authentik" does not exist. This is stopping me from going any further in the setup. Any advice?
Was going to set this up today, guess I'm holding off by an hour!
Just moved from Tassie to Geelong and UA-cam started recommending your videos to me suddenly. So glad it did, fantastic content. Will supplement Spaceinvaderones tutorials well.
More Informations about how to use it with traefik would be nice. (Each Subdomain a app in authentik)
nice guide but it feels kind of half done since you guys didnt show how to set it up with traefik or NPM in unraid
There's more to come, what's shown here is what's on the box
This should hopefully solve a lot of issues I have with authentication on fragmented systems architecture across multiple technologies.
Hope it helps Pete
How to use it... please!
It worked for a while, but now I can only access certain parts in the admin UI. Not sure if this is something I did, or if this is just not quite ready for use.
To give more clarity, when I try to view my settings to make changes to MFA options, I get a blank page.
I've got it running, so now what? Couln't you do a tutorial connecting it to.. let's say grocy or xbackbone with ldap?
set up the worker following your tutorial and it looks like it's not starting correctly, when accessing the logs, it's just closing the window. Resource usage is a 0% CPU and 0B /0B Memory eventhough the docker is started.
Ok, as long as postgres is not connected, everything works fine, beside the errors in the logs because postgres is not connected. As soon as postgres is connected, the worker stops working but still is shown as running
redid does not require a paw, on the worker is not mandatory but on the main it is and creates confusion
I like the tutorials mostly too bad a lot of them are done in unraid instead of "normal" docker compose. With how they do it in unraid around 80% says nothing on how to do it in plain compose.
First!-ish
Ive watched most of your videos. While they all seem to be missing some tiny thing here or there, they were informative and enough to get moving on. This video however was just an absolute waste of time, didn't feel well researched, wasn't documented. You are better than this, don't fall the way of everyone else, stick to what got you to be a go to source.
This is SUCHHHH a long intro.
Flux capacitor anyone? LOL
Incase like mine Redis does't start for you add this (Found in the advanced View)
Add this to Post Arguments in the template:
redis-server --requirepass password
All thanks goes to BlueRyuu on Unraid forum..
I am having an issue with authentik-worker and redis....it is saying {"event": "Redis Connection failed, retrying... (WRONGPASS invalid username-password pair or user is disabled.)", "level": "info", "logger": "authentik.lib.config" I can not figure out how to unlock the user i have verified the password is good. Can anyone help me out?
seems like recent versions of authentik are broken. Tried going back a few releases and still crashes.
ak-root/venv/lib/python3.12/site-packages/opencontainers/distribution/reggie/defaults.py:17: SyntaxWarning: invalid escape sequence '('
great guide as always!
However, im stuck after installing authentik, log shows:aioredis.errors.ReplyError: WRONGPASS invalid username-password pair or user is disabled
dont know where to go from here.
I get this as well. Did you find a solution?
I was having the same issue but I was able to get it working by removing special characters from my redis password. It might only be specific characters it doesnt like but I didnt test it
@Ben James I solved my issue last night by deleting redis container and started over. Either I messed up somewhere och something got corrupted, I don't know. But works now.
@@benjames5485 Thank you. This solved it for me. In my case a '%' in the password did the error