What is organizr
Organizr allows you to setup "Tabs" that will be loaded all in one webpage.
This integration leverages authentik's LDAP for the identity provider to achieve an SSO experience. See ldap provider generic setup for setting up the LDAP provider.
The following placeholders will be used:
organizr.companyis the FQDN of the Service install.
authentik.companyis the FQDN of the authentik install.
Create a new user account (or re-use an existing) for organizr to use for LDAP bind under Directory -> Users -> Create, in this example called
Note the DN of this user will be `cn=ldapservice,ou=users,dc=ldap,dc=goauthentik,dc=io`
Optionally, create a new group like
organizr users to scope access to the organizr application.
- Create a new Proxy Provider for
https://organizr.companyOptionally, add the regular expression to allow api calls in the advanced protocol settings.
- Create a new Application for the
Optionally, bind the group to control access to the organizr to the application.
::: 3. Add the Application to the authentik Embedded Outpost.
Ensure any local usernames/email addresses in organizr do not conflict with usernames/email addresses in authentik.
- Enable Auth Proxy in organizr system settings -> main -> Auth Proxy
Auth Proxy Header Name:
Auth Proxy Whitelist: your network subnet in CIDR notation IE
Auth Proxy Header Name for Email:
- Setup Authentication in organizr system settings -> main -> Authentication
Organizr DB + Backend
<LDAP Outpost IP address:port>
Host Base DN:
<LDAP bind account password>
LDAP Backend Type:
Access for authentik users is managed locally within organizr under User Management. By default, new users are assigned the
Consider front-ending your application with a forward auth provider for an SSO experience.