2 Factor Auth and Single Sign on with Authelia
Authelia is an open source Single Sign On and 2FA companion for reverse proxies.It helps you secure your endpoints with single factor and 2 factor auth.It works with Nginx, Traefik, and HA proxy.Today, we’ll configure Authelia with Portainer and Traefik and have 2 Factor up and running with brute force protection!
Traefik
Authelia will work with other reverse proxies but I used Traefik.If you want to configure Traefik as your reverse proxy see this guide.
Docker Setup
See this post on how to install docker and docker-compose
Authelia
configuration.yml, users_database.yml, and docker-compose.yml can be found here
Example heimdall can be found here here
Traefik configuration changes can be found here
Generation a hashed password
1
2
$ docker run authelia/authelia:latest authelia hash-password 'yourpassword'
Password hash: $argon2id$v=19$m=65536$3oc26byQuSkQqksq$zM1QiTvVPrMfV6BVLs2t4gM+af5IN7euO0VB6+Q8ZFs
Files and folders
1
2
3
4
5
6
7
8
mkdir authelia
cd authelia
mkdir config
cd config
nano configuration.yml
nano users_database.yml
cd ..
nano docker-compose.yml
Create Authelia container
1
docker-compose up -d
Links
⚙️ See all the hardware I recommend at https://l.technotim.live/gear
🚀 Don’t forget to check out the 🚀Launchpad repo with all of the quick start source files