Overview:
Authentik is an open-source Identity Provider (IdP) designed for modern Single Sign-On (SSO). It supports multiple authentication protocols including SAML, OAuth2/OIDC, LDAP, and RADIUS. The project is built for self-hosting environments, ranging from small experimental labs to large-scale production clusters. It serves as a self-hosted alternative for organizations looking to manage identity and access without relying on proprietary cloud services.
Core Features:
Multi-protocol support: Supports SAML, OAuth2/OIDC, LDAP, and RADIUS for integrating with a wide range of applications and services.
Self-hosted deployment: Can be deployed on-premises or in private infrastructure, from small lab setups to large production clusters.
Enterprise offering: A commercial enterprise version is available for organizations, positioned as a replacement for IdPs such as Okta, Auth0, Entra ID, and Ping Identity.
Use Cases:
System administrators self-hosting identity management for a lab or small organization.
IT teams deploying a scalable SSO solution across a production cluster.
Organizations migrating away from commercial IdPs like Okta or Auth0 to a self-hosted alternative.
Why It Matters:
Authentik provides a self-hosted, open-source approach to identity and access management, covering widely used protocols like SAML, OAuth2/OIDC, LDAP, and RADIUS. Its design accommodates both modest setups and larger deployments, making it a practical option for teams that need control over their authentication infrastructure without relying on external cloud IdPs.
