LemonLDAP::NG

LemonLDAP::NG is an open source Web Single Sign On product (WebSSO) written in Perl, plugged into Apache Web Server.

LemonLDAP::NG is a free software, released under GPL license.

LemonLDAP::NG is the first SSO software deployed in French administrations. It can handle more than 200 000 users. Many private firms use it too. Check our references!

• Many SSO-ready applications (OBM, Bugzilla, Dokuwiki, etc.)
• Special Handlers for Zimbra, Sympa
• Tomcat SSO Valve
• Replace all .htaccess based security
• Forward SSO trough HTTP Auth-Basic or form replay
• One line code to integrate in Java, PHP, .Net, Perl, Ruby, Python, …

• URL matching trough regular expressions (subdirectories, file types, …)
• Use of any user session information to build access rule

• LDAP
• Database
• SSL X509
• Apache built-in modules (Kerberos, NTLM , OTP, …)
• SAML 2.0 / Shibboleth
• OpenID
• Twitter
• CAS
• Radius
• Multiple and Choice (modules stacking)

• LDAP v2 and v3 protocol support
• SSL / TLS
• Active Directory compliance
• Password policy
• Recursive groups

• SAML 2.0 / Shibboleth
• OpenID
• CAS

• Dynamic application menu
• Password change form
• Password reset by mail

• Graphical Manager
• Sessions explorer
• Status page
• Apache logs
• Syslog
• Log4Perl compatibility

• Protected cookies
• XSS and SQL/LDAP injection protection
• Compatibility with Apache mod_security
• User tracking in Apache logs or syslog

• Rev 2851 -- Add libstring-random-perl and libmime-lite-perl as dependencies in Debian packaging (#LEMONLDAP-599) by clement_oudot (2013/06/13 16:10)
• Rev 2850 -- Force password reset for AD (#LEMONLDAP-513) by clement_oudot (2013/06/03 00:00)
• Rev 2849 -- Manage default value for mailLDAPFilter (#LEMONLDAP-513) by clement_oudot (2013/06/02 23:53)
• Rev 2848 -- Add Unicode::String dependency (#LEMONLDAP-513) by clement_oudot (2013/06/01 15:48)
• Rev 2847 -- Add Cli unit test in MANIFEST by clement_oudot (2013/06/01 15:42)