The requirement of managing an LDAP or AD directory service just to get some auth for NFS is a dealbreaker for like 99% of people. It’s such a dumb protocol for the average user and was designed with only huge corporate clients in mind.

Just give people a simple password auth or let them exchange private/public keys between the devices that need to connect!

I run everything on local hardware. 1 Synology NAS, one old desktop (Ryzen 5 5600X) which has been repurposed to a Proxmox node, and a second Proxmox node (i5-6500T). I use Open Media Vault with Docker as my primary host, and I have a CoreOS secondary host that I have a couple of Podman containers on. I’m planning moving stuff to Podman eventually, but I was mostly focused on moving the bare metal OMV host to a vm recently. I have a media share on my NAS that some containers rely on. I also have a NFS share on it that I use for larger data pools (like nextcloud, download folders for torrents).

• Everything is: Bare metal Proxmox -> VMs -> Containers. No services running directly
• I use Docker (mostly) and a couple of podman containers, moving to podman going forward
• Only orchestration is docker-compose (for docker) and systemd (for podman)
• No central log server, haven’t needed one