HAProxy and Authelia

Started by tomdh76, February 05, 2023, 07:03:40 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 05, 2023, 07:03:40 PM
Thx to the excellent tutorial of @TheHellSite (https://forum.opnsense.org/index.php?topic=23339.225) I have HAproxy working.

I have one service I would like to be entered only through Authelia, to enable 2FA. I see a guide for pfsense (https://dkict.com/pfsense-haproxy-authelia/) but I cannot get it to work in OPNsense

I have the needed lua scripts in place but I cannot find a place to enter the needed configuration for the backend service like "acl remote_user_exist var(req.auth_response_header.remote_user) -m found"

Anyone has this kind of setup working and would like to help me
May 26, 2023, 05:53:18 AM #1
Did you ever get this working? I'm having problems with this too.
June 06, 2023, 03:17:00 PM #2
Hi
I am trying to do the same config is there any guidance?
thank you
June 18, 2023, 04:41:08 PM #3
This has been possible since 2020:
https://forum.opnsense.org/index.php?topic=19025.0

Regarding config I just "translated" the Authelia docu examples to "OPNsense style of rules/conditions" no other guides needed, just some trial and error/looking at the config to get the correct rules in place.
2x 23.7 VMs & CARP, 4x 2.1GHz, 8GB
Cisco L3 switch, ESXi, VDS, vmxnet3
DoT, Chrony, HAProxy + NAXSI, Suricata
VPN: IPSec, OpenVPN, Wireguard
MultiWAN: Fiber 500/500Mbit dual stack + 4G failover

--
Available for private support.
Did my answer help you? Feel free to click [applaud] to the left
Print
Go Up Pages1
User actions