Building a Private LDAP Address Book with OpenLDAP (Proxmox + LDAPS)
Goal I wanted a centralised address book that is: LAN-only (no internet exposure) Encrypted end-to-end using TLS Compatible with common mail clients (Thunderbird, etc.) Simple: address book only (not authentication) Architecture Host: Proxmox VE Guest: Ubuntu 25.04 LXC container Directory: OpenLDAP (slapd) Admin UI: phpLDAPadmin Transport security: Private internal CA + LDAPS on port 636 Network scope: VLAN-segmented, allowlisted internal subnets only The LDAP server hostname: hl-mail.int.hillnet.co.nz Schema choices for “address book” use This directory is deliberately designed for contacts, not logins. ...