Migration from #LLDAP to #Kanidm didn't go as planned. Seems Kanidm is a rather shitty LDAP server, and being read-only is not the issue. You're able to query using 'cn', but cn is not among the results, as well as givenName, uid, or mail (there is actually a workaround to get that one).
1/2

When you start a small hobby project, and you figure out that #lldap is missing #OAuth2, and spinning up #Keycloak for this is totally absurd and heavy, you switch to #Kanidm, which has OAuth2 support ..
1/2

Juhu, neues #rabbithole :blobcat_keyboard: #paperlessngx mit Authentifizierung via #openid in #authelia mit #lldap als Backend, #traefik als Proxy und das alles #rootless mit #podman.

Wir sind schon mal bei "man kann sich anmelden und Dokumente einstellen".

Aber bis das wirklich nutzbar ist vergeht noch Zeit. Ich muss Dokus erstellen, eine für die Benutzung und eine Systembeschreibung.

Hobbyprojekt hin oder her - ohne taugt das nichts...

J'ai rien de prêt, mais on va quand même tenter de se refaire une install au propre d'#Authelia avec #LLDAP, sur le cluster #Talos évidemment. Comme d'hab, installez-vous confortablement 🙂

https://www.twitch.tv/therealseboss666

あ! バグが直せるまで新しいバージョンリリースしないと言ってたLLDAPがリリースされてた! しかもPAM認証にも対応してるから、Linuxユーザーログインにも使える! これは試さないと #linux #lldap #ldap

lldap/lldap: Light LDAP implementation: https://github.com/lldap/lldap/blob/main/example_configs/pam/README.md

@lacontrevoie Super article et gros travail 👏
Dommage que vous ayez abandonné l'idée de tester #LemonLDAP mais j'avoue que le courbe d'apprentissage est peu ardue.
Concernant #Authelia et l'annuaire LDAP, je ne peux que vous conseillez, si ce n'est pas trop tard, de tester #LLDAP https://github.com/lldap/lldap. C'est un annuaire LDAP tournant sous docker, très léger et dont la prise en main est ultra-simple. J'ai rédigé quelques articles dessus dont le dernier est https://doc.quercylibre.fr/Projets/Cluster%20RPI/12-clusterrpi/

Знайшов корисну і просту пріблуду: #lldap

Писано на расті.

Працює наче швидко.
озу їсть трохи більше ніж #openldap .

Зате є веб, де ти малюєш схеми, та управляєш користувачами і групами...

Простий і швидкий лєнівчик для невеликих проектів...

Got my #Ansible role for #LLDAP setup tonight. Running the binary as a service on an #LXC with a simple #nginx proxy setup for SSL.

https://github.com/jrtashjian/homelab-ansible/commit/a40bf9a140ba140cd0da0e5e860884e595c303d8

Next I'll get #Authelia running on an LXC the same way and lock it down since it will be publicly accessible via a #CloudFlare tunnel. #homelab

With centralized auth via #LLDAP, #Authelia for SSO, and NetBird for VPN all set, it's time to dive into automating the setup with #Terraform and #Ansible! 😃

@geobomatic The linked crate is a client. I guess that @kubikpixel is looking for a server. In that case, my recommendations are lldap if you only need essential features and Kanidm otherwise:

https://github.com/lldap/lldap

https://kanidm.com

Both are written in #Rust and are therefore efficient and easy to deploy.

I use lldap on my home server and can recommend it. I wanted to experiment with Kanidm in the next days though :D

#LDAP #LLDAP #Kanidm #RustLang

Almost got my self-hosted #NetBird linked with #LLDAP+#Authelia, but hitting a snag. Authelia isn't accepting the redirect_uri which seems to be `https://${NETBIRD_DOMAIN}/#callback`

Working to figure out the issue. #homelab

One thing I’d love to use #LLDAP for is #TrueNAS Scale user accounts. I can’t seem to get user accounts from LLDAP synced into TrueNAS but I am able to connect them. I read something about SMB attributes might be needed but haven’t looked too far into it yet.

I’ve been tinkering with #Authelia and #LLDAP for centralizing user accounts in my #homelab. So far, I’ve successfully set up LDAP and OIDC with #Proxmox and #GitLab. My next challenge is integrating #NetBird with Authelia and securely exposing entrypoints for friends and family to access internal services through the NetBird VPN.

Latest on my #homelab:

- Set up a Container and Package registry on #GitLab, powered by #MinIO storage.
- Currently configuring #lldap on a new node, not yet under #Terraform management, and integrating it with various services.
- Fixed some Minecraft server config issues.
- Fixed IPV4 config for LXC containers.
- Starting push mirroring of repos from GitLab to GitHub and transitioning GitHub Actions to GitLab CI/CD (for some repos).

https://github.com/jrtashjian/homelab-ansible

@spiezmaestro I didn't, I have openLDAP as well as Samba AD at work and didn't want to do this at home too. But #lldap is a gift and takes very little administrative overhead so I'm using that now at home

I've been using #Authentik for centralizing user accounts in my #homelab but I've learned about some lighter weight options like #LLDAP and #Authelia that I'm trying out. Also considering #NetBird as an self-hosted alternative to #Tailscale.

Now I just need to figure out how to put them all together🤔

Since I used #openldap many years at work, I never wanted to have a ldap server at home. (Not that openldap is bad, but its too much work for my family install)

But I installed #lldap this weekend and connected a few services (nextcloud, tandoor and jellyfin). Works as expected and was really easy. And nextcloud even fetched the avatars from lldap 💓
Thanks @nitnelave

https://github.com/lldap/lldap

#selfhosted