OpenLDAP is the directory that answers, for every tool that asks: who is this, and what are they allowed to touch. In the enclave it runs not once but twice — two instances that never share a population, by design.

Both live in the Basement, the most protected zone, and both authenticate outward through Authentik-Business. What divides them is who they govern. LDAP-Alpha is the workplace directory — the real identities doing real work. LDAP-Beta is the commons directory — the volunteer population that meets across the Lounge and works on the Range. They are kept apart because the worlds they serve are kept apart: the directory boundary is the two-world boundary, made concrete.

InstanceGovernsHostVersion
LDAP-Alphareal-identity WorkplaceBasement (Z0)latest stable
LDAP-Betavolunteer CommonsBasement (Z0)latest stable

Has anything touched?

If reading this made you want to argue with it, extend it, or notice what's missing, that's the signal to show up.

:/back-to-top