Device Compliance

Device compliance lets authentik verify that a user's device meets security and configuration criteria, such as operating system version, disk encryption, antivirus status etc, before allowing access to resources.

Device compliance is currently in very early preview. Device compliance policies are currently inaccessible and therefore have to be emulated with existing policies.

For more information, pick a topic below:

📄️ Configuration

Prerequisites

📄️ Connectors

Connectors allow device information to be reported to authentik.

📄️ Device reporting

Endpoint Devices registered with authentik via a connector, such as the authentik Agent connector, regularly check-in with authentik and report their device facts.

📄️ Device compliance policy

Device compliance policies are used to limit access to authentik and applications based on Device Compliance information.

📄️ Browser extension

The authentik Endpoint SSO browser extension is required for device compliance functionality, and is currently available via the Chrome Web Store, the Firefox Add-ons site, and the Edge Add-ons site.