Authelia is an open source Single Sign On and 2FA companion for reverse proxies. It helps you secure your endpoints with single factor and 2 factor auth. It works with Nginx, Traefik, and HA proxy. Today, we’ll configure Authelia with Portainer and Traefik and have 2 Factor up and running with brute force protection!
Traefik
Authelia will work with other reverse proxies but I used Traefik. If you want to configure Traefik as your reverse proxy see this guide.
Docker Setup
See this post on how to install docker and docker-compose
Authelia
configuration.yml, users_database.yml, and docker-compose.yml can be found here
Example heimdall can be found here here
Traefik configuration changes can be found here
Generation a hashed password
1
2
$ docker run authelia/authelia:latest authelia hash-password 'yourpassword'
Password hash: $argon2id$v=19$m=65536$3oc26byQuSkQqksq$zM1QiTvVPrMfV6BVLs2t4gM+af5IN7euO0VB6+Q8ZFs
Files and folders
1
2
3
4
5
6
7
8
mkdir authelia
cd authelia
mkdir config
cd config
nano configuration.yml
nano users_database.yml
cd ..
nano docker-compose.yml
Create Authelia container
1
docker-compose up -d
Links
⚙️ See all the hardware I recommend at https://l.technotim.live/gear
🚀 Don’t forget to check out the 🚀Launchpad repo with all of the quick start source files