Skip to content

Support GSSAPI/SASL binds for LDAP user backend #53981

New issue
New issue
Open
Enhancement
Open
Support GSSAPI/SASL binds for LDAP user backend#53981
Enhancement
Labels
0. Needs triagePending check for reproducibility or if it fits our roadmapenhancement
@Freddo3000

Description

@Freddo3000
Freddo3000
opened on Jul 17, 2025

How to use GitHub

  • Please use the 👍 reaction to show that you are interested into the same feature.
  • Please don't comment if you have no relevant information to add. It's just extra noise for everyone subscribed to this issue.
  • Subscribe to receive notifications on status change and new comments.

Is your feature request related to a problem? Please describe.
I'm using Nextcloud in an Kerberized environment where all hosts and services have their own principals, including nextcloud at HTTP/<fqdn>@REALM. I'm currently unable to use this principal with system tickets to authenticate the Nextcloud server against LDAP using SASL.

Describe the solution you'd like
I'd like there to be an option to use SASL for authenticating the Nextcloud server against an LDAP backend, preferably with support for the added security layers provided with Kerberos and the like.

Describe alternatives you've considered
Regular old bind with LDAPS.

Additional context

Metadata

Metadata

Assignees

No one assigned

    Labels

    0. Needs triagePending check for reproducibility or if it fits our roadmapenhancement

    Type

    Enhancement

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions