I’ve recently installed and configured LLDAP (Lightweight LDAP) - More details here if you’ve never heard of it before: GitHub - lldap/lldap: Light LDAP implementation
Now whilst I understand that this implements a limited subset of the LDAP specification and at present, I’m only using it with Authelia but I wondered if others have used it/know how to configure it for the likes of TrueNAS (syncing users and groups) in addition to configuring Linux workstations to use it as an authentication server - validating user credentials?
Ultimately, I’m looking to use LLDAP as a single source of truth for user accounts and these account password’s being validated by the LLDAP server - I’m not interested in all the fancy stuff that the likes of ActiveDirectory can do (so I’m not expecting anything more than simply authenticating a user with the LLDAP managed password)
I love how lightweight and super easy this has been to setup and run :)
Does anyone already do this or at least know if it can be done?
Any information would be much appreciated.
Thanks in advance!
If you want something lightweight, you can also use KanIDM instead of Authelia + LLDAP. It supports LDAP, OAuth and RADIUS.
And, like LLDAP, KanIDM is written in Rust. Projects like Authelia and Zitadel are also fast but they still use a garbage collector that kicks in every now and then.
Like other people have suggested, maybe it’s a good idea with better featured options supporting many more authentication and authorization options.
My personal pick is Authentik as it supports working as an OpenID, SAML, RADIUS, LDAP, and proxy. While also supporting external users from the likes of LDAP
I’ve been meaning to try Zitatel which apparently have unique feature of being able to act as LDAP server, that might be one option