Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
nginx ldap group authentication
« previous
next »
Print
Pages: [
1
]
Author
Topic: nginx ldap group authentication (Read 294 times)
Vince007
Newbie
Posts: 8
Karma: 0
nginx ldap group authentication
«
on:
September 27, 2024, 10:38:34 am »
Hi
I'd like to authenticate ldap users based on ldap groups on nginx acting as reverse proxy to backend web servers.
Different ldap groups /users allowed to access differents locations, is this possible ? Actually and as far as i understand, it's only possible to allow all users (not specific ones) and also not groups per location, or just a single ldap group if restricted in the ldap configuration.
I was doing this quite easily with Apache as a reverse proxy on a different firewall, any idea to acheive this on Opnsense ?
Thanks for any help:)
Regards.
Vince
Logged
Monviech (Cedrik)
Global Moderator
Hero Member
Posts: 1614
Karma: 176
Re: nginx ldap group authentication
«
Reply #1 on:
September 27, 2024, 01:47:35 pm »
I'm curious which firewall you have used before.
Logged
Hardware:
DEC740
Vince007
Newbie
Posts: 8
Karma: 0
Re: nginx ldap group authentication
«
Reply #2 on:
September 27, 2024, 01:49:33 pm »
I was using ClearOS and did manual ajustements to the Apache config file.
Logged
Monviech (Cedrik)
Global Moderator
Hero Member
Posts: 1614
Karma: 176
Re: nginx ldap group authentication
«
Reply #3 on:
September 27, 2024, 02:39:53 pm »
Ah okay. Well there is an Apache based reverse proxy for OPNsense. The package is called os-OPNWAF and is in the Business Edition. But it does not have ldap authentication built into the GUI.
On NGINX I don't know how to do it sadly.
In Caddy you can choose the "forward_auth" directive in the GUI to send users to an SSO portal hosted with an Authelia or Authentik server to allow specific access. These could communicate with an ldap backend.
Best respond here again so others see I couldn't help you. I was just interested.
Logged
Hardware:
DEC740
Vince007
Newbie
Posts: 8
Karma: 0
Re: nginx ldap group authentication
«
Reply #4 on:
September 27, 2024, 02:46:04 pm »
Thanks for the suggestion, i'll wait to see if anyone else know how to deal with this and Nginx
Thanks a lot !
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
nginx ldap group authentication