Skip to content

Active Directory/LDAP Authentication for Admin Interface #4485

Open
@cvillegas1976

Description

@cvillegas1976

Currently, Nginx Proxy Manager lacks native Active Directory/LDAP integration for admin authentication, forcing enterprises to maintain separate credentials or implement complex workarounds.

Proposed Solution
Implement LDAP/AD authentication for the admin UI with:

  • Secure LDAP/LDAPS connectivity
  • Group-based role mapping (Admin/User)
  • Standard attribute support (sAMAccountName, memberOf, etc.)

Example Configuration

"auth": {
  "ldap": {
    "enabled": true,
    "url": "ldap://ad.example.com:389",
    "bindDN": "cn=admin,dc=example,dc=com",
    "bindCredentials": "secret",
    "userSearchBase": "ou=users,dc=example,dc=com",
    "usernameAttribute": "sAMAccountName",
    "groupSearchBase": "ou=groups,dc=example,dc=com"
  }
}

Key Benefits

✅ Enterprise-ready authentication
✅ Centralized user management
✅ Improved security compliance
✅ Reduced credential fatigue

Additional Context
This would mirror functionality found in:

  • Authelia (but more lightweight)
  • Portainer's LDAP implementation
  • TrueNAS directory services

Willingness to Help
I can:

  • Test beta versions in production
  • Provide AD server samples
  • Assist with documentation

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions