Setup Idea
- LDAP
- Keycloak (SSO, MFA)
Propably PrivacyIdea (MFA) will not be necessary due to the reason that Keycloak covers this use cases:
Sources
General LDAP Setup
Role Specific LDAP Configuration
Role | Guides |
---|---|
Gitlab | Integrate LDAP with GitLab | GitLab |
Brainstorming
2FA and SSO
- Single Sign-On & Two-Factor Authentication with SAML
- MFA for LDAP - Rublon
- Solved: How to enable MFA with LDAP? - Google Cloud Community
- Use multifactor authentication with the LDAP Interface | Okta
- https://www.privacyidea.org/
- GitHub - privacyidea/privacyidea: 🔐 multi factor authentication system (2FA, MFA, OTP Server)
- https://jumpcloud.com/support/configure-mfa-for-ldap
- https://www.rcdevs.com/de/products/ldproxy/
- php - Is there any solution available which supports 2FA in OpenLDAP for user authentication? - Stack Overflow
- Eine Identität für alles mit Keycloak | heise online