Types of policies in authentik

These pages describe the built-in policy objects you can create in authentik.

Use this section to browse the dedicated reference page for each policy type.

📄️Event Matcher Policy

Use an Event Matcher policy when you want to match authentik events against a small set of built-in fields instead of writing a custom expression.

🗃Expression Policies

5 items

📄️GeoIP Policy

Use a GeoIP policy when you want to make access decisions based on where a request appears to come from.

📄️Password Policy

Use a Password policy when you want to validate a password entered in a prompt stage.

📄️Password Expiry Policy

Use a Password Expiry policy when passwords should expire after a fixed number of days.

📄️Password Uniqueness Policy

The Password Uniqueness policy is an enterprise policy that prevents users from reusing previously used passwords.

📄️Reputation Policy

Use a Reputation policy when you want authentik to react to repeated failed authentication attempts from a username, a client IP, or both.