diff --git a/Netgrimoire/Audits/lldap-2026-04-20.md b/Netgrimoire/Audits/lldap-2026-04-20.md
new file mode 100644
index 0000000..b901604
--- /dev/null
+++ b/Netgrimoire/Audits/lldap-2026-04-20.md
@@ -0,0 +1,53 @@
+---
+title: Audit - lldap.yaml
+description: Gremlin audit report 2026-04-20
+published: true
+date: 2026-04-20T11:23:13.526Z
+tags: gremlin,audit
+editor: markdown
+dateCreated: 2026-04-20T11:23:13.526Z
+---
+
+# Audit Report — lldap.yaml
+
+**Date:** 2026-04-20  
+**File:** swarm/lldap.yaml  
+**Type:** Docker Swarm  
+**Verdict:** FAIL
+
+---
+
+1. **Homepage labels**: 
+   - `homepage.group=Management`
+   - `homepage.name=LLDAP`
+   - `homepage.icon=ldap.png`
+   - `homepage.href=https://ldap.netgrimoire.com`
+   - `homepage.description=Lightweight LDAP directory`
+   **PASS** - All labels are present and correctly configured.
+
+2. **Uptime Kuma labels**: 
+   - `kuma.lldap.http.name=LLDAP`
+   - `kuma.lldap.http.url=http://lldap:17170`
+   **PASS** - All Uptime Kuma labels are present and correctly configured.
+
+3. **Caddy labels on exposed services**: 
+   - `caddy=ldap.netgrimoire.com`
+   - `caddy.reverse_proxy=lldap:17170`
+   **FAIL** - Caddy configuration is missing for both `LLDAP` service ports (17170 and 3890). Fix by adding appropriate Caddy labels for each port.
+
+4. **Placement constraints**: 
+   - `node.hostname == docker4`
+   **PASS** - Constraints are correctly applied to both services.
+
+5. **Volumes use /DockerVol/<service> path convention**: 
+   - `lldap-db`: `/DockerVol/lldap-db/data:/var/lib/postgresql/data`
+   - `lldap`: `/DockerVol/lldap/data:/data`
+   **PASS** - All volumes follow the specified path convention.
+
+6. **Network references external netgrimoire overlay**: 
+   - Network `netgrimoire` is marked as `external: true`
+   **PASS** - External network reference is correctly set up.
+
+**VERDICT: FAIL**
+
+(1 item failed)
\ No newline at end of file