LemonLDAP::NG is a FOSS for WebSSO, access management and identity federation developed since 2005. Its community is active and regurlarly proposes new versions. This talk will first present the software and its main functionalities: Multi-domain SSO Configuration and session management Form replay CAS, OpenID and SAML support Authentication methods chaining Applications portal Password management Notifications Then the main novelties of version 1.2: Radius authentication (and use of Google Authenticator) Connection history management Put an application in maintenance state Inserting a menu on protected applications
9. Login history
● Keep in a persistent session success and failed
authentication
● The login history is available to administrators
trough sessions explorer, and can be displayed
to users in the portal
OW2Con'12, November 28-29, 2012
Orange Labs, Paris. www.ow2.org.
10. Floating menu
● Add HTML code on the fly on protected
applications
● Display portal and logout links
● Easy to customize!
OW2Con'12, November 28-29, 2012
Orange Labs, Paris. www.ow2.org.
11. Maintenance mode
● Dismiss an application without touching Apache
configuration
● Standard HTTP code 503
● All nodes of a cluster disabled at the same
time!
OW2Con'12, November 28-29, 2012
Orange Labs, Paris. www.ow2.org.
12. Radius authentication
● Standard
authentication mode
with login and
password
● Compatible with
Google Authenticator
OW2Con'12, November 28-29, 2012
Orange Labs, Paris. www.ow2.org.
13. The end... almost
OW2Con'12, November 28-29, 2012
Orange Labs, Paris. www.ow2.org.
14. Thanks
● Thanks to:
● OW2 Con organizers
● LINAGORA company
● LemonLDAP::NG and Perl community
● Stay in touch:
● Identica: @coudot
● Twitter: @clementoudot
● IRC: KPTN #lemonldap-ng@freenode
OW2Con'12, November 28-29, 2012
Orange Labs, Paris. www.ow2.org.
15. Questions?
OW2Con'12, November 28-29, 2012
Orange Labs, Paris. www.ow2.org.