this post was submitted on 22 Nov 2023
2 points (100.0% liked)

Self-Hosted Main

21 readers
1 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

For Example

We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.

Useful Lists

founded 1 year ago
MODERATORS
 

I've recently installed and configured LLDAP (Lightweight LDAP) - More details here if you've never heard of it before: GitHub - lldap/lldap: Light LDAP implementation

Now whilst I understand that this implements a limited subset of the LDAP specification and at present, I'm only using it with Authelia but I wondered if others have used it/know how to configure it for the likes of TrueNAS (syncing users and groups) in addition to configuring Linux workstations to use it as an authentication server - validating user credentials?

Ultimately, I'm looking to use LLDAP as a single source of truth for user accounts and these account password's being validated by the LLDAP server - I'm not interested in all the fancy stuff that the likes of ActiveDirectory can do (so I'm not expecting anything more than simply authenticating a user with the LLDAP managed password)

I love how lightweight and super easy this has been to setup and run :)

Does anyone already do this or at least know if it can be done?

Any information would be much appreciated.

Thanks in advance!

top 3 comments
sorted by: hot top controversial new old
[–] indykoning@alien.top 1 points 11 months ago

Like other people have suggested, maybe it's a good idea with better featured options supporting many more authentication and authorization options.

My personal pick is Authentik as it supports working as an OpenID, SAML, RADIUS, LDAP, and proxy. While also supporting external users from the likes of LDAP

[–] rrrmmmrrrmmm@alien.top 1 points 11 months ago

If you want something lightweight, you can also use KanIDM instead of Authelia + LLDAP. It supports LDAP, OAuth and RADIUS.

And, like LLDAP, KanIDM is written in Rust. Projects like Authelia and Zitadel are also fast but they still use a garbage collector that kicks in every now and then.

[–] Professional-Fee2235@alien.top 1 points 11 months ago

I've been meaning to try Zitatel which apparently have unique feature of being able to act as LDAP server, that might be one option