Amazon Cognito
Customer identity and access management service for adding user sign-up, sign-in, and authentication to apps
Open-Source Projects
Discover top open-source software, updated regularly with real-world adoption signals.
Discover top open-source software, updated regularly with real-world adoption signals.
Open-source Identity Provider for modern SSO and authentication
Self-hosted Identity Provider supporting SAML, OAuth2/OIDC, LDAP, and RADIUS. Designed to scale from small labs to enterprise production clusters with flexible deployment options.
authentik is an open-source Identity Provider (IdP) that delivers enterprise-grade single sign-on capabilities for organizations seeking control over their authentication infrastructure. Supporting industry-standard protocols including SAML, OAuth2/OIDC, LDAP, and RADIUS, it serves as a comprehensive replacement for commercial solutions like Okta, Auth0, Entra ID, and Ping Identity.
Built for self-hosting, authentik adapts to your infrastructure needs. Deploy via Docker Compose for development and small environments, leverage Kubernetes with official Helm charts for production clusters, or use one-click AWS CloudFormation and DigitalOcean Marketplace integrations. The platform scales seamlessly from personal labs to large enterprise deployments.
With native support for multiple authentication protocols and reverse-proxy capabilities, authentik integrates with existing applications and infrastructure. The platform provides both light and dark UI themes, comprehensive developer documentation, and an active community. Organizations gain robust identity management without vendor lock-in, maintaining full control over user data and authentication flows.
When teams consider authentik, these hosted platforms usually appear on the same shortlist.
Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.
Enterprise IdP Migration
Replace Okta or Auth0 with self-hosted authentik, reducing licensing costs while maintaining SAML and OIDC integrations across all applications
Kubernetes-Native Authentication
Deploy authentik via Helm charts to provide centralized SSO for microservices, internal tools, and admin dashboards in production clusters
Hybrid Protocol Support
Unify legacy LDAP/RADIUS applications with modern OAuth2 services under single identity provider, eliminating authentication silos
Compliance-Driven Self-Hosting
Meet data residency and sovereignty requirements by hosting authentication infrastructure on-premises or in private cloud environments
authentik supports SAML, OAuth2/OIDC, LDAP, RADIUS, and includes reverse-proxy capabilities for flexible authentication integration.
Yes, authentik is designed as an enterprise-grade replacement for commercial identity providers, offering comparable features with self-hosting control.
Deploy via Docker Compose for small setups, Kubernetes Helm charts for production, AWS CloudFormation templates, or DigitalOcean Marketplace one-click installation.
Yes, authentik scales from small labs to large production clusters. An enterprise offering is available for organizations requiring additional support and features.
Minimum requirements depend on scale: Docker Compose for small deployments, or Kubernetes for production clusters. Container orchestration knowledge recommended for larger installations.
Project at a glance
ActiveLast synced 4 days ago
