Adding users via LDAP

[fliberdygibits]

Because I wasn't paying attention I posted this over in troubleshooting when it's really more just a question.

I've got an ldap outpost setup in authentik that I've been fiddling with.  I'm able to log into JF against ldap.... new users in authentik are auto created in JF as they should be.  However I have been trying to implement a failed login attempt lockout and have a few questions.  Currently JF won't follow the limit set in authentik and only uses the local limit set IN JF.

If I want something other than JF's default of -1 is that a parameter I have to pass from authentik somehow or that authenik/ldap should be enforcing?  Or am I just going to need to get into jellyfin everything a user is added from authentik to adjust that?

[crobibero]

I think it’s Authentik’s responsibility to keep track of failed access attempts as I haven’t found reference to failed access attempts for the LDAP protocol.

If you want Jellyfin to keep track of it for you, you would need to have Authentik tell Jellyfin how many attempts the user is allowed before lockout.

An alternative would be to update the Jellyfin LDAP plugin to set the login attempt count on the user to a value configured within the LDAP plugin.

[fliberdygibits]

I was not able to find directions specifically for setting that in the ldap outpost so I used the directions for adding it to authentik's default login flow and improvised but it doesn't seem to work. How should I go about having authentik tell jellfin this? Any thoughts?