Open
Description
Currently, Nginx Proxy Manager lacks native Active Directory/LDAP integration for admin authentication, forcing enterprises to maintain separate credentials or implement complex workarounds.
Proposed Solution
Implement LDAP/AD authentication for the admin UI with:
- Secure LDAP/LDAPS connectivity
- Group-based role mapping (Admin/User)
- Standard attribute support (sAMAccountName, memberOf, etc.)
Example Configuration
"auth": {
"ldap": {
"enabled": true,
"url": "ldap://ad.example.com:389",
"bindDN": "cn=admin,dc=example,dc=com",
"bindCredentials": "secret",
"userSearchBase": "ou=users,dc=example,dc=com",
"usernameAttribute": "sAMAccountName",
"groupSearchBase": "ou=groups,dc=example,dc=com"
}
}
Key Benefits
✅ Enterprise-ready authentication
✅ Centralized user management
✅ Improved security compliance
✅ Reduced credential fatigue
Additional Context
This would mirror functionality found in:
- Authelia (but more lightweight)
- Portainer's LDAP implementation
- TrueNAS directory services
Willingness to Help
I can:
- Test beta versions in production
- Provide AD server samples
- Assist with documentation