{
  "slug": "authelia",
  "name": "Authelia",
  "description": "Authelia is an open-source authentication and authorization server providing single sign-on (SSO) and two-factor authentication (2FA) for applications protected by reverse proxies. It acts as a companion to proxies like NGINX, Traefik, or HAProxy to verify user credentials before granting access to web resources.",
  "url": "https://optimly.ai/brand/authelia",
  "logoUrl": "",
  "baiScore": 62,
  "archetype": "Challenger",
  "category": "Software",
  "categorySlug": null,
  "keyFacts": [],
  "aiReadiness": [],
  "competitors": [
    {
      "slug": "authentik",
      "name": "Authentik"
    },
    {
      "slug": "keycloak",
      "name": "Keycloak"
    }
  ],
  "inboundCompetitors": [],
  "aiAlternatives": [
    {
      "slug": "application-native-auth",
      "name": "Application Native Auth"
    }
  ],
  "parentBrand": null,
  "subBrands": [],
  "updatedAt": "2026-04-10T18:47:25.048+00:00",
  "verifiedVitals": {
    "website": "https://www.authelia.com/",
    "founded": "2018",
    "headquarters": "Remote / Open Source Project",
    "pricing_model": "Free (Open Source)",
    "core_products": "Authelia Authentication Server, Authelia Helper Tools.",
    "key_differentiator": "A lightweight, configuration-as-code focused authentication server that prioritizes security and performance over a heavy administrative GUI.",
    "target_markets": "Self-hosters, Homelab enthusiasts, SMBs with technical DevOps teams, privacy-conscious developers.",
    "employee_count": "1-10 (Core Contributors)",
    "funding_stage": "Open Source / Community Supported",
    "subcategory": "Identity and Access Management (IAM)"
  },
  "intentTags": {
    "problemIntents": [
      "Basic HTTP Auth / .htpasswd: Using built-in basic authentication or simple .htpasswd files for each application separately without a centralized portal.",
      "Manual Reverse Proxy Configuration: Configuring NGINX or Traefik with custom snippets and manually managed session cookies or LDAP integrations.",
      "Application-Native Auth: Relying on the native, often rudimentary, authentication systems built into each individual self-hosted application (e.g., Plex, Nextcloud, Home Assistant) without a unified S"
    ],
    "solutionIntents": [
      "best self-hosted SSO for home lab",
      "how to add 2FA to NGINX proxy manager apps",
      "open source authentication server for Traefik",
      "open source OIDC provider for kubernetes",
      "OAuth2 Proxy: Using OAuth2 Proxy to provide a thin layer of authentication for providers like Google or GitHub without a local portal."
    ],
    "evaluationIntents": [
      "Authelia vs Authentik for home server"
    ]
  },
  "timestamp": 1777038987257
}