15
OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org. LemonLDAP::NG 1.2 Clément OUDOT New features of LemonLDAP::NG 1.2

LemonLDAP NG 1.2, OW2con'12, Paris

Tags:

Embed Size (px)

DESCRIPTION

LemonLDAP::NG is a FOSS for WebSSO, access management and identity federation developed since 2005. Its community is active and regurlarly proposes new versions. This talk will first present the software and its main functionalities: Multi-domain SSO Configuration and session management Form replay CAS, OpenID and SAML support Authentication methods chaining Applications portal Password management Notifications Then the main novelties of version 1.2: Radius authentication (and use of Google Authenticator) Connection history management Put an application in maintenance state Inserting a menu on protected applications

Citation preview

Page 1: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

LemonLDAP::NG 1.2Clément OUDOT

New features of LemonLDAP::NG 1.2

Page 2: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

About the speaker

Page 3: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Clément OUDOT

● LDAP engineer since 2003 in LINAGORA company, with experiences in SUN/Oracle to OpenLDAP migration

● LinID Dream Team Manager http://linid.org ● Leader of LDAP Tool Box project

http://ltb-project.org● Leader of LemonLDAP::NG project

http://lemonldap-ng.org

http://linid.org/
http://ltb-project.org/
http://lemonldap-ng.org/
Page 4: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

LemonLDAP::NG

Page 5: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Components

● LemonLDAP::NG main components:● Portal: authentication process, user interaction,

application menu, password change form● Manager: configuration interface, sessions explorer● Handler: Apache agent, manage access

authorizations

● Perl, only Perl, just Perl● Relies on Apache and mod_perl

Page 6: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Follow the white request

Page 7: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Demo mode

● Default mode at installation● Provide dummy accounts● One account has administration privileges

Page 8: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Demo mode

Page 9: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Login history

● Keep in a persistent session success and failed authentication

● The login history is available to administrators trough sessions explorer, and can be displayed to users in the portal

Page 10: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Floating menu

● Add HTML code on the fly on protected applications

● Display portal and logout links● Easy to customize!

Page 11: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Maintenance mode

● Dismiss an application without touching Apache configuration

● Standard HTTP code 503● All nodes of a cluster disabled at the same

time!

Page 12: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Radius authentication

● Standard authentication mode with login and password

● Compatible with Google Authenticator

Page 13: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

The end... almost

Page 14: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Thanks

● Thanks to:● OW2 Con organizers● LINAGORA company● LemonLDAP::NG and Perl community

● Stay in touch:● Identica: @coudot● Twitter: @clementoudot● IRC: KPTN #lemonldap-ng@freenode

Page 15: LemonLDAP NG 1.2, OW2con'12, Paris

OW2Con'12, November 28-29, 2012 Orange Labs, Paris. www.ow2.org.

Questions?


What’s new in Bonita Open Solution ? OW2con'12, Paris

What’s new in Bonita Open Solution ? OW2con'12, Paris

Technology
VideoLabs: business around VLC, OW2con'16, Paris

VideoLabs: business around VLC, OW2con'16, Paris

Technology
WebSSO and Access Management with LemonLDAP::NG

WebSSO and Access Management with LemonLDAP::NG

Technology
eServices with Spagic at OMSAR, OW2con’12, Paris

eServices with Spagic at OMSAR, OW2con’12, Paris

Technology
OW2Con 2011 Petals BPM and the Cloud

OW2Con 2011 Petals BPM and the Cloud

Technology
The LemonLDAP::NG Project

The LemonLDAP::NG Project

Technology
[OW2Con 2015] LemonLDAP::NG 2.0 overview

[OW2Con 2015] LemonLDAP::NG 2.0 overview

Technology
June 26-27, 2017 Paris. - OW2con · OW2con'17, 26-27 June, 2017, Paris Overview of OW2con'17 OW2con'17 offers two days of useful and insightful project presentations, demonstrations,

June 26-27, 2017 Paris. - OW2con · OW2con'17, 26-27 June, 2017, Paris Overview of OW2con'17 OW2con'17 offers two days of useful and insightful project presentations, demonstrations,

Documents
CompatibleOne Project, OW2con 2011, Nov 24-25, Paris

CompatibleOne Project, OW2con 2011, Nov 24-25, Paris

Technology
Lemonldap::NG, open-source Web-SSO of the french administrations

Lemonldap::NG, open-source Web-SSO of the french administrations

Technology
Xwiki Extension Manager in Action, OW2con’12, Paris

Xwiki Extension Manager in Action, OW2con’12, Paris

Technology
RMLL 2014 - LemonLDAP::NG - What's new under the SSOn

RMLL 2014 - LemonLDAP::NG - What's new under the SSOn

Technology
OW2con'14 - Keynote from Microsoft

OW2con'14 - Keynote from Microsoft

Technology
What's new with Petals ESB ? OW2con'12, Paris

What's new with Petals ESB ? OW2con'12, Paris

Technology
OW2con'14 -

OW2con'14 -

Technology
OW2Con 2013 - Measuring quality of software developments with Spago4Q

OW2Con 2013 - Measuring quality of software developments with Spago4Q

Technology
Innovation and Research, OW2con'12, Paris

Innovation and Research, OW2con'12, Paris

Technology
LemonLDAP::NG 2.0 - FOSDEM 2019 · SSO Workfow Authentication Portal Application 2. Authentication 1. First access 3. Send SSO Token Trust link 4. Validate SSO token ... Connect Second

LemonLDAP::NG 2.0 - FOSDEM 2019 · SSO Workfow Authentication Portal Application 2. Authentication 1. First access 3. Send SSO Token Trust link 4. Validate SSO token ... Connect Second

Documents
DocDokuPLM presentation - OW2Con 2015 Community Award winner

DocDokuPLM presentation - OW2Con 2015 Community Award winner

Presentations & Public Speaking
Ow2 Utilities, OW2con'12, Paris

Ow2 Utilities, OW2con'12, Paris

Technology
OW2con'14 - Setting the stage in Open Cloud

OW2con'14 - Setting the stage in Open Cloud

Technology
Automatizing SpagoBI, OW2con'16, Paris

Automatizing SpagoBI, OW2con'16, Paris

Technology
OW2Con 2011: Open Source Innovation Factory

OW2Con 2011: Open Source Innovation Factory

Technology
OW2con'14 - keynote from Institut Mines Telecom

OW2con'14 - keynote from Institut Mines Telecom

Technology
OCCIware & Linked Data prototype OW2Con@POSS

OCCIware & Linked Data prototype OW2Con@POSS

Technology
LemonLDAP::NG et le support SAML2

LemonLDAP::NG et le support SAML2

Technology
Kassi, an Open Enterprise - OW2con 2011

Kassi, an Open Enterprise - OW2con 2011

Technology
E-Government Portal-DAWLATI, OW2con'12, Paris

E-Government Portal-DAWLATI, OW2con'12, Paris

Technology
@ OW2con' 12

@ OW2con' 12

Documents
AppHub OW2con'15 - Peter Deussen Presentation

AppHub OW2con'15 - Peter Deussen Presentation

Software