The LemonLDAP::NG project

A session at LDAPCon 2011

Tuesday 11th October, 2011

5:00pm to 5:45pm (CET)

LemonLDAP::NG is an open source WebSSO, access control and identity federation product. Written in Perl, and relying on Apache mod_perl engine, it aims to be multi-protocol, handling for example LDAP, CAS, SAML, or OpenID.

The LemonLDAP::NG software provides three main modules:

  • The portal, for authentication process and password management
  • The manager, for graphical configuration
  • The Handler, for access control inside Apache engine

This allows system administrators to use their LDAP identity data store to manage access control to all hosted web applications.

This conference will first introduce the concepts of Single-Sign On, access control and identity federation, and present the LemonLDAP::NG software (technical architecture, main features, real use cases)

We will then focus on the LDAP support:

  • Authentication: how credentials are checked in the LDAP data store
  • Data collect: how user data (including group membership, with recursion) are collected
  • Password policy support, for authentication and password change, including password reset management
  • Access rules: how LDAP data can be used for access control
  • Identity federation: how LDAP data can be shared with other services trough SAML or OpenID
  • Configuration and session management: how LDAP server can be use in an high availability infrastructure to share sessions and configuration

About the speaker

This person is speaking at this event.
Clément OUDOT

Open Source Identity Management guy @SFLinuxFR #ldap #iam #sso #openldap #lemonldap #lsc #ltb #saml #cas #openidconnectMastodon: @clementoudot@framapiaf.org

Coverage of this session

Sign in to add slides, notes or videos to this session

LDAPCon 2011

Germany Germany, Heidelberg

10th11th October 2011

Tell your friends!


Time 5:00pm5:45pm CET

Date Tue 11th October 2011

Short URL


View the schedule



See something wrong?

Report an issue with this session