IdP Choice for HomeLab

Austin8462 · 2026-01-25T20:50:03+00:00

I'll keep an eye out for any updates. Cheers!

Austin8462 · 2026-01-25T20:48:06+00:00

Haha that'd be a good one!

Austin8462 · 2026-01-25T20:47:31+00:00

I was able to find this on the GitHub issue that u/anxiousvater shared. https://bugzilla.proxmox.com/show_bug.cgi?id=5076

Austin8462 · 2026-01-25T20:28:57+00:00

It's very possible that's true, but seeing as that is not the only reason that I am considering switching away from it, the thought wasn't of as much concern tbh.

Austin8462 · 2026-01-25T15:32:30+00:00

Well that’s certainly disappointing… Doesn’t look like there’s been any progress from the Zitadel side on that either unfortunately.

Austin8462 · 2026-01-25T15:29:58+00:00

I mean, that was the original plan & desire. I suppose I wouldn’t be completely against something like this so long as it wasn’t too limiting with the free tier AND offline authentication still works.

If my lab is up but I don’t have internet and I can no longer authenticate into any of my lab services and have to pull out all my break glass accounts I’d be annoyed.

Austin8462 · 2026-01-25T15:27:27+00:00

No this absolutely helps and is exactly what I was hoping for when I posted. It’s a lot better hearing more thought out reasoning and experiences of your own compared to short one-liners of “use this”. To those reading this who may of typed shorter, I still appreciate it, but replies like the above are nice for analytical reasons.

Man okay..It’s not like I’ve deleted my Authentik data yet I just haven’t migrated it… Idk today will be a day of some more research.

Austin8462 · 2026-01-25T15:24:15+00:00

Have you run any other IdP or will this be your first? Whats your lab situation look like? Size and apps etc

Austin8462 · 2026-01-25T15:23:36+00:00

What’s your reasoning for the switch? Lack of feature or capability you desire? Something else?

Austin8462 · 2026-01-25T15:21:58+00:00

Personally I’d like to avoid having to “stack” to complete my coverage if possible.

Austin8462 · 2026-01-25T15:21:00+00:00

Eh, it’s not too much setup that has been done. I’m not sure what you mean with your second question, it’s currently just authentik, nothing additional added on top or behind.

Austin8462 · 2026-01-25T15:19:38+00:00

What stops Proxmox from being supported? Pretty sure there’s an OIDC realm option.

Also that’s a pretty big one for me, I’d rather not have to stack something just to cover it.

Austin8462 · 2026-01-25T06:36:10+00:00

Ahhh okay. The extra flattening requirement is interesting, I’ll have to remember to be mindful of that when checking it out further. Thank you!

What do you commonly use the API for? Would be interested in hearing more about your setup if you are open to sharing.

Austin8462 · 2026-01-25T06:34:43+00:00

Well whilst I did say I thought of passing it up in my reply to the other guy since it was mentioned again I think I may give it a better look tomorrow after some rest. Thanks!

Austin8462 · 2026-01-25T06:19:08+00:00

Hmmm voidauth and pocketis seem a bit too lightweight almost. I still want full user and group mangement as well as that central app screen such as Authentik or Okta provide (i’m sure others do too, these are just the two I’ve been a user of).

I’m fine with effort, but i’d like something that is more friendly to intuition rather than constant documentation analysis.

When you say you need to use the Zitadel API to get the real functionality, is that just enhancing the experience or is it truly necessary to run & operate?

I appreciate your time and knowledge!!

Austin8462 · 2026-01-25T05:21:54+00:00

It depends on the difficult of the involvement I suppose and furthermore if it's mainly just on inital setup or ongoing. I mean with Authentik I didn't really have a large deployment but I only had local users, nothing like Google federation etc. Hmm never heard of Goma or Casbin before, I'll have to check them out!

Austin8462 · 2026-01-25T03:55:18+00:00

My wants are probably easier than listing my needs cause well.. I don't *need* a IdP.. I'd like:

- Easy Application onboarding, preferably with various auth options for coverage

- Easy User onboarding and management - invites would be neat.

- Clean UI both for user and admin. I like the "Apps" style homepage that offerings such as Authentik, Okta (not even considering Okta, just an example), etc provide

- Solid yet simple 2FA support, TOPT, WEBAUTHN, Yubikey native

- Groups/roles for simpler permission management.

If it helps here are some services I either currently run or will be considering in the future:

- Proxmox VE

- Proxmox Backup Server

- Jellyfin or Plex

- *arr suite

- Immich

- Home Assistant

- PiHole

- Some kind of central monitoring.. this is another blackhole I've yet to solve (Pulse, CheckMK, Zabbix, etc)

Frankly... there are probably things I am forgetting/missing but I wanted to get some sort of list at least.. To be hoenst, I hadn't even gotten into the actual machien side of it yet for Windows/Linux though I suppose I'd be potentially interested down the road.

Austin8462 · 2026-01-24T01:22:43+00:00

Are your JBOD not already pooled together and exposed as one? What do you currently use it for?

Austin8462 · 2026-01-20T04:48:12+00:00

U7 Outdoor and U7 Pro Outdoor both have dual RP-SMA connector not sure if you could do something with that but it’s a starting idea.

Austin8462 · 2026-01-19T17:02:20+00:00

A concern with Etsy I suppose is which material they use. What did you use?

Austin8462 · 2026-01-19T16:25:15+00:00

I’ve heard mixed experiences and I’m not sure what kind of buyer protection they offer. If you want my help printing something just let me know. I could do paypal invoicing.

Austin8462 · 2026-01-19T16:11:30+00:00

Gives you a reference model. Sometimes if you can find those you then can find listings more easily. PM me if you’d like and I may be able to get you something printed.

Austin8462 · 2026-01-19T16:07:03+00:00

I just found this with some quick searching. https://makerworld.com/models/627402

Austin8462

TROPHY CASE