tntclaus
commented
3 years ago I guess it is.
Following steps may get you what you need:
- Backup your matrix db :)
- Install and setup OpenLDAP (see comment below)
- Setup user accounts in OpenLDAP which will have exactly same ids that your users do have in matrix now
- Enable LDAP auth in synapse and allow login with ids same as existing users have.
- Disable in-matrix registration.
Little advice: check FreeIPA. Any LDAP server by itself is more pain in the ass than advantage. It should work in conjunction with bunch of other software and services. Or you can try KeyCloak / JetBrains Hub (free, project-oriented, but not foss) that are more handy if you need SSO or won't ever need HBAC (host based access control), PAM and other kerberos stuff to controll access to numerous linux-operated vm fleet or employee desktops.
TheOneWithTheBraid
pushytoxin
3nprob
Is there any way to migrate locally created (aka inside Synapse's DB) users to an LDAP server like openLDAP ?
In my case, we started a small Matrix service which is now expanding to more and more tools for which we would like to provide unified authentication. Hence, we would like to migrate Synapse's users to an LDAP provider.
Is this somehow possible?