62187e60d4
* website: integrations-all: update doc titles to start with "integrate with" * website/integrations-all: cleanup script * start ??? will do the rest in a sec * website/integrations-all: fix broken script website/integrations-all: fix website/integrations-all: fix website/integrations-all: fix website/integrations-all: fix
1.8 KiB
1.8 KiB
title, sidebar_label
| title | sidebar_label |
|---|---|
| Integrate with Cloudflare Access | Cloudflare Access |
Integrate with Cloudflare Access
Support level: Community
What is Cloudflare Access
Cloudflare Access is a secure, cloud-based zero-trust solution for managing and authenticating user access to internal applications and resources.
Preparation
The following placeholders are used in this guide:
company.cloudflareaccess.comis the FQDN of your Cloudflare Access subdomain.authentik.companyis the FQDN of the authentik installation.
To proceed, you need to register for a free Cloudflare Access account and have both a Cloudflare account and a publicly accessible authentik instance with a trusted SSL certificate.
authentik configuration
- From the Admin interface, navigate to Applications -> Applications.
- Use the wizard to create a new application and provider. During this process:
- Note the Client ID, Client Secret, and slug values because they will be required later.
- Set a
Strictredirect URI tohttps://company.cloudflareaccess.com/cdn-cgi/access/callback. - Select any available signing key.
Cloudflare Access configuration
- Open the Cloudflare Access dashboard and navigate to Settings -> Authentication.
- Click Login methods, and then select Add -> OpenID Connect.
- From the authentik provider you created earlier, copy the following details and paste them into the corresponding fields:
- Client ID -> App ID
- Client Secret -> Client Secret
- Authorize URL -> Auth URL
- Token URL -> Token URL
- JWKS URL -> Certificate URL
- Click Save.
- Click Test to verify the login provider.