Risky Business Risky Biz Soap Box: Run your own open source IDP with Authentik
8 snips
Feb 14, 2025 Fletcher Heisler, CEO of Authentik and a leader in open-source identity solutions, dives into the power of self-hosted identity management. He explains how users are reclaiming control from traditional SaaS providers like Okta. The discussion highlights Authentik's flexibility and adaptability for businesses, whether on-premises or in the cloud. Fletcher emphasizes user-driven development, security through transparency, and the importance of backup strategies, making a strong case for the future of open-source identity solutions.
AI Snips
Chapters
Transcript
Episode notes
Emergency Services Use Case
- Emergency service centers, like one in Washington state, use Authentik for biometric authentication.
- This is crucial for maintaining access even with unreliable internet connections during emergencies.
Open Source Security
- Open source doesn't inherently guarantee better security, but it allows for greater transparency and community review.
- Patrick Gray and Fletcher Heisler discuss how open source encourages scrutiny and facilitates identification of vulnerabilities.
Valuable Audits
- A company's kernel driver audit didn't reveal bugs, but offered valuable architectural advice.
- Authentik's penetration testing revealed lax password requirements on their staging server, prompting improved default policies.