Multiple Directories Support LDAP + OIDC

bloor · May 11, 2026, 11:08pm

I have configured an LDAP and a OIDC directory. My idea was to pull in users via LDAP and just let them authenticate via OIDC.

The idea is, that users are managed centrally outside of StalWart (e.g. FreeIPA, an LDAP Server, etc.) and the Mail setup needs to know them before their first login to receive Mail for them.

So ideally LDAP is continually synced for the user information (also changed mailaliases, etc.) but only login via OIDC is allowed for a more secure login method.

the_asakura · May 14, 2026, 8:02pm

Multiple directory support would be great, though it shouldn’t be too hard to achieve. Get an oauthbearer token? use OIDC. Otherwise use LDAP or local store.

bloor · May 15, 2026, 9:35pm

I was not thinking like that, I think for authentication one main directory per domain should be used, however multiple directories covering the same (!) users is helpful for user syncing.

Topic		Replies	Views
Feature request: LDAP account sync Feature Ideas	3	55	May 14, 2026
Domain based authentication directory Questions	10	78	May 29, 2026
Support multiple OIDC clients in a single external directory Issues	5	90	May 28, 2026
Add LDAP poll-style uri Feature Ideas	0	7	May 25, 2026
Admin panel OIDC Questions	11	158	May 18, 2026

Multiple Directories Support LDAP + OIDC

Related topics