... | ... | @@ -2156,12 +2156,15 @@ using the [django-auth-ldap][] authentication plugin. |
|
|
* [Keycloak][]: single-sign-on interface which talks with LDAP
|
|
|
* [FreeIPA][]: similar, except built on top of 389 DS, the Fedora
|
|
|
LDAP thing
|
|
|
* [Authelia][]: single sign-on, 2fa, OIDC connect
|
|
|
|
|
|
A solution could be to deploy Keycloak or some SSO server on *top* of
|
|
|
the current LDAP server to provide other applications with a single
|
|
|
authentication layer. Then the underlying backend could be changed to
|
|
|
swap ud-ldap out if we need to, replacing bits of it as we go.
|
|
|
|
|
|
[Authelia]: https://www.authelia.com/
|
|
|
|
|
|
### Others
|
|
|
|
|
|
* [LDAP synchronization connector][]: "Open source connector to
|
... | ... | |