I'm terse.
I've been called:
Nerd
Pilot
Bubblehead
Performer
Dad
Advocate
Engineer
Introvert
Addict
Funny
Most are true.
@not3ottersinacoat valid complaint. There is a certain level of experience/expertise required for these installers.
Having said that, its open source! As a former colleague would say, "now its your problem too".
I cannot speak for any of the BSDs, but I know there's a avoidance (albeit adversarial at times) of explaining things which are documented/described elsewhere. And, for many BSDs, adoption is a non-goal. Its a hobby. Use it if you want to...or don't!
This, of course, makes things difficult for a newcomer...but as a once newcomer myself, I can assure you you'll know so much more about your system if you try. Its not downhill, but the view is amazing when you get a little higher. But, its a journey, for sure.
Anyways, if you're interested, I'd be happy to offer pointers if you get stuck...as long as you're willing to take "what have you found so far?" as a frequent answer.
I did a thing...
Tired of bloated JVM with other IdPs...I found Rauthy (https://github.com/sebadob/rauthy) and wanted it in #OpenBSD ports.
Not sure if I've done this correctly...but "works on my machine" : https://marc.info/?l=openbsd-ports&m=177422071513450&w=2
I do feel like this sort of quiet resistance is absolutely the least one can do...
Not slander. Not libel. Probably.
@pertho @dch @kusuriya Fwiw, DexIdp is written in golang...and has been working well, built locally, and running in my OpenBSD chroot for ~6 months for me...using ldapd(8) as the auth source.
I may get around to packaging it eventually.
I'm sure one could cobble together multi-orgs via it's gRPC api: https://dexidp.io/docs/configuration/api/
But it makes me wonder if you need multi-org support, or an automated way to support multiple orgs (ie, one instance/chroot per org -- re: blast radius).
Michael W Lucas 
Kit Malone