diff --git a/snippets/ldap-auth.conf b/snippets/ldap-auth.conf
new file mode 100644
index 0000000000000000000000000000000000000000..14ae462ffc038a4fc05f730444a95421bfc4ae3a
--- /dev/null
+++ b/snippets/ldap-auth.conf
@@ -0,0 +1,14 @@
+auth_request    /validate;
+
+location = /validate {
+  proxy_pass                        https://auth.shore.co.il/validate;
+  proxy_http_version                1.1;
+  proxy_ssl_verify                  on;
+  proxy_ssl_verify_depth            3;
+  proxy_ssl_name                    auth.shore.co.il;
+  proxy_ssl_server_name             on;
+  proxy_ssl_trusted_certificate     /etc/ssl/certs/ca-certificates.crt;
+  internal;
+  proxy_pass_request_body           off;
+  proxy_set_header Content-Length   "";
+}