There are many alternatives to Keycloak as a self-hosted solution if you are looking for a replacement. The best open source Self-Hosted alternative is authentik. If that doesn't suit you, our users have ranked more than 50 alternatives to Keycloak and many of them are open source and available as a self-hosted solution so hopefully you can find a suitable replacement. Other interesting open source Self-Hosted alternatives to Keycloak are AuthKit, ZITADEL , Authelia and Hanko.
authentik is an open-source identity provider focused on flexibility and versatility.
authentik is the most popular Mac, Linux & Self-Hosted alternative to Keycloak.
authentik is the most popular Open Source & free alternative to Keycloak.
AuthKit is a Radix-powered open source authentication UI built for effortless customizations. User Management is the backend platform handling email verification, account linking, bot blocking, organization modeling, and more.
AuthKit is the most popular Web-based alternative to Keycloak.
Secure authentication management for your application. Customize as you grow, with easy APIs and programmable workflows. Focus on growing, your login is in good hands.
ZITADEL is the most popular SaaS alternative to Keycloak.
Protect your applications with Single Sign-On and 2 Factor. Authelia is an open-source full-featured authentication server available on Github.
Hanko is a modern open source Authentication & User Management system – built and hosted in the EU. Alternative to Clerk, Auth0, Stytch, Descope.
Stack is an open-source, self-hostable, and highly customizable authentication and user management system.
Stack Auth is not an OpenID or Oauth provider. It is a web backend for a set of libraries for authentication, but it does not do OpenID or Oauth
Kanidm is an identity management server, acting as an authority on account information, authentication and authorisation within a technical environment.
LemonlLDAP::NG is a modular Web-SSO based on Apache::Session modules. It simplifies the build of a protected area with a few changes in the application. It manages both authentication and authorization and provides headers for accounting.
LemonLDAP::NG is the most popular Windows alternative to Keycloak.
Pomerium is an identity and context-aware proxy that enables secure access to applications without a client. Pomerium provides a standardized interface to add access control to applications regardless of whether the application itself has authorization or authentication baked-in.
Your data, your control. Fully open source, authentication and authorization. No lock-ins. Deployment in Railway.app | Heroku in 120 seconds || Spin a docker image as a micro-service in your infra. Built in login page and Admin panel out of the box.
Logto helps you build the sign-in, auth, and user identity within minutes. We provide an OIDC-based identity service and the end-user experience with username, phone number, email, and social sign-in, for web and native apps.
Nubus is a modular open-source solution for centralized identity & access management, providing secure user management, role-based access control, and Single Sign-On (SSO) via a central web portal.
Germany
EU
United States
Switzerland
France
India
Open source, simple component-based integrations, and passkeys - what's not to like?