Wulf's Various Things

User Tools

Site Tools

Trace: Authelia and NPM
config:authelia-npm

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
config:authelia-npm [2026/03/09 13:11] Wuffconfig:authelia-npm [2026/03/09 13:29] (current) Wuff
Line 9: Line 9:
  
 The examples use simple local yaml file for authelia users and local file for notifications (used for 2FA setup) and local sqlite database. Any complex SSO, Redis, LDAP, mysql/postgresql database or other integration is out of scope of this article. The examples use simple local yaml file for authelia users and local file for notifications (used for 2FA setup) and local sqlite database. Any complex SSO, Redis, LDAP, mysql/postgresql database or other integration is out of scope of this article.
 +
 +===== Docker setup =====
  
 <code yaml docker-npm.yml> <code yaml docker-npm.yml>
Line 69: Line 71:
 mkdir -p /opt/npm/{data,letsencrypt} mkdir -p /opt/npm/{data,letsencrypt}
 </code> </code>
 +
 +
 +===== Authelia Configuration =====
  
 <code yaml /opt/authelia/configuration.yml> <code yaml /opt/authelia/configuration.yml>
Line 1363: Line 1368:
  
 </code> </code>
 +
 +===== Authelia password file =====
 +
 +For the user passwords, go to https://argon2.online/ to generate your passwords, use the settings you see below:
 +
 +{{.:pasted:20260309-131835.png}}
 +
 +Enter your password into the "Plain Text Input"
 +
 +Click the gear in "Salt" to generate a random string of characters.
 +
 +Be sure to have "Argon2id" activated.
 +
 +Other settings:
 +
 +    Parallelism: 4
 +    Memory Cost: 65536
 +    Iterations: 3
 +    Hash Length: 32
 +
 +Click "Generate Hash"
 +
 +Copy the string that starts with $argon2id into the associated user password in the users_database.yml
  
 <code yaml /opt/authelia/users_database.yml> <code yaml /opt/authelia/users_database.yml>
Line 1383: Line 1411:
 </code> </code>
  
 +===== Docker startup =====
 Start the docker containers: Start the docker containers:
  
Line 1391: Line 1420:
  
  
-====== NPM GUI Configuration ======+===== NPM GUI Configuration =====
  
 The default NPM GUI is internally accessible on http://192.168.1.2:71 (replace with other IP/port if different). Log in using the initial admin email and password as configured in the npm docker yaml file. The default NPM GUI is internally accessible on http://192.168.1.2:71 (replace with other IP/port if different). Log in using the initial admin email and password as configured in the npm docker yaml file.
Line 1466: Line 1495:
  
 Repeat for all other subdomains as required. Repeat for all other subdomains as required.
 +
 +===== Authelia login =====
 +
 +Going to https://auth.example.com (replace with your domain) will show the authelia login prompt now. You can log in and set up 2FA, see your authentication status and change your password and registered devices.
  
 This configuration enables 2FA by default, so logging in to any of the services will prompt 2FA setup. The auth code will be stored in /opt/authelia/notification.txt and not emailed to the user! This configuration enables 2FA by default, so logging in to any of the services will prompt 2FA setup. The auth code will be stored in /opt/authelia/notification.txt and not emailed to the user!
  
 +{{.:pasted:20260309-132751.png}}
 +
 +By default, authentication is valid for 1 hour or 30 days when the remember me is checked on login. This can be changed in the authelia configuration.yml
config/authelia-npm.1773061906.txt.gz · Last modified: by Wuff