42
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 28 Jan 2025
42 points (95.7% liked)
Selfhosted
60366 readers
704 users here now
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil.
-
No spam.
-
Posts are to be related to self-hosting.
-
Don't duplicate the full text of your blog or readme if you're providing a link.
-
Submission headline should match the article title.
-
No trolling.
-
Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
founded 3 years ago
MODERATORS
I haven't used Authentik myself at all; Okta at one place I worked, but that was managed by the ops team so I didn't have much to do with it.
Committing to LDAP is one thing; getting SSO is a whole other level of effort. Again, I have experience with LDAP so it seems manageable, and common enough to be worth setting up - does a large enough portion of OSS hosted software support SAML or OpenID or whatever to make setting up Authentik worth the effort?
I'll re-iterate, I do not enjoy ops. I do it only because it's slightly more important to me to have control over my data than it is to not have to admin stuff. I like lldap specifically because it's a single executable, one or two really basic config files (requiring a bare minimum of understanding LDAP to configure), and one SQLite DB file - backing it up is, like, 3 files. This has huge value to someone like me, far exceeding the capability limitations of lldap vs OpenLDAP. If Authentik is just as easy, with minimum external dependencies, then I'm interested. If I have to install, configure, and administer and maintain PostgreSQL, redis, and a half dozen other external dependencies... then my family can live without SSO :-)
Yea no I'd never recommend Authentik for its simplicity. In fact I'd say it's pretty complicated to set up and a lot harder to learn how to use.
It does indeed need an external database, and likes to run in a kubernetes cluster...
I mostly set it up to learn about SSO, but by now it's hooked into everything I could hook it up with.
Definitely not worth the effort in any normal homelab scenario, apart from needing some cool points
Thanks!