diff --git a/dockers/ldap/base/acl.ldif.tmpl b/dockers/ldap/base/acl.ldif.tmpl
index c3a4198..f6266f9 100644
--- a/dockers/ldap/base/acl.ldif.tmpl
+++ b/dockers/ldap/base/acl.ldif.tmpl
@@ -14,6 +14,7 @@ olcAccess: {1}to dn.subtree="$LDAPROOT"
   by dn="cn=mattermost,ou=applications,$LDAPROOT" read
   by dn="cn=cloud,ou=applications,$LDAPROOT" read
   by dn="cn=mobilizon,ou=applications,$LDAPROOT" read
+  by dn="cn=mastodon,ou=applications,$LDAPROOT" read
   by dn="$BINDDN" write
   by * none
 olcAccess: {2}to *
diff --git a/dockers/ldap/base/kaz-schema.ldif.tmpl b/dockers/ldap/base/kaz-schema.ldif.tmpl
index 72bc3f8..a006fe5 100644
--- a/dockers/ldap/base/kaz-schema.ldif.tmpl
+++ b/dockers/ldap/base/kaz-schema.ldif.tmpl
@@ -45,13 +45,18 @@ olcAttributeTypes: {8}( 1.3.6.1.4.1.5656.1.1.9 NAME 'adressesServices'
         EQUALITY caseIgnoreMatch
         SUBSTR caseIgnoreSubstringsMatch
         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15)
+olcAttributeTypes: {9}( 1.3.6.1.4.1.5656.1.1.10 NAME 'mastodonEnabled'
+        DESC 'acces a mastodon'
+        EQUALITY caseIgnoreMatch
+        SUBSTR caseIgnoreSubstringsMatch
+        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE)
 -
 replace: olcObjectClasses
 olcObjectClasses: {0}( 1.3.6.1.4.1.5656.1.2.1 NAME 'kaznaute'
         DESC 'Un kaznaute'
         SUP top AUXILIARY
         MUST ( cn $ quota $ mailDeSecours $ identifiantKaz )
-        MAY ( agoraEnabled $ mobilizonEnabled $ numeroMembre )
+        MAY ( agoraEnabled $ mobilizonEnabled $ mastodonEnabled $ numeroMembre )
         )
 olcObjectClasses: {1}( 1.3.6.1.4.1.5656.1.2.2 NAME 'kazorga'
         DESC 'Une orga kaz'
diff --git a/dockers/ldap/base/skeleton.ldif.tmpl b/dockers/ldap/base/skeleton.ldif.tmpl
index fce0158..14a29b8 100644
--- a/dockers/ldap/base/skeleton.ldif.tmpl
+++ b/dockers/ldap/base/skeleton.ldif.tmpl
@@ -38,3 +38,8 @@ dn: cn=mobilizon,ou=applications,$LDAPROOT
 objectClass: person
 sn: mobilizon
 userPassword: $MOBILIZON_PASSWORD
+
+dn: cn=mastodon,ou=applications,$LDAPROOT
+objectClass: person
+sn: mastodon
+userPassword: $MASTODON_PASSWORD
diff --git a/dockers/ldap/update.sh b/dockers/ldap/update.sh
index 7b48637..f2eab03 100755
--- a/dockers/ldap/update.sh
+++ b/dockers/ldap/update.sh
@@ -29,6 +29,7 @@ sed -i -e "s%\$LDAPUI_PASSWORD%\{CRYPT\}`mkpasswd -m sha512crypt ${LDAP_LDAPUI_P
 sed -i -e "s%\$MATTERMOST_PASSWORD%\{CRYPT\}`mkpasswd -m sha512crypt ${LDAP_MATTERMOST_PASSWORD}`%g" /tmp/skeleton.ldif
 sed -i -e "s%\$CLOUD_PASSWORD%\{CRYPT\}`mkpasswd -m sha512crypt ${LDAP_CLOUD_PASSWORD}`%g" /tmp/skeleton.ldif
 sed -i -e "s%\$MOBILIZON_PASSWORD%\{CRYPT\}`mkpasswd -m sha512crypt ${LDAP_MOBILIZON_PASSWORD}`%g" /tmp/skeleton.ldif
+sed -i -e "s%\$MASTODON_PASSWORD%\{CRYPT\}`mkpasswd -m sha512crypt ${LDAP_MASTODON_PASSWORD}`%g" /tmp/skeleton.ldif
 
 cp base/kaz-schema.ldif.tmpl /tmp/kaz-schema.ldif
 KAZNUMBER=$(ldapsearch -H ldap://$LDAP_IP -D "cn=${LDAP_CONFIG_ADMIN_USERNAME},cn=config" -w ${LDAP_CONFIG_ADMIN_PASSWORD} -b cn=schema,cn=config | grep "kaz,cn=schema" | head -n1 | cut -d',' -f1 | cut -d'{' -f2 | cut -d'}' -f1)