Full access control¶
LL::NG is a web single-sign-on system, but unlike some systems it can manage rights on applications based on regular expressions on URL.
Easy to customize¶
LL::NG is designed using Model–View–Controller software architecture, so you just have to change HTML/CSS files to customize the portal.
Easy to integrate¶
Integrating applications in LL::NG is easy since its dialogue with applications is based on customizable HTTP headers.
Unifying authentications (Identity Federation)¶
LL::NG can easily exchange with other authentication systems by using SAML, OpenID or CAS protocoles. It may be the backbone of a heterogeneous architecture.
LL:NG can be set as Identity provider, Service Provider or Protocol Proxy (LL::NG as federation protocol proxy).
Its REST / SOAP API can also be used to dialogue directly with your custom applications.
LL::NG Manager has a session explorer module that can be used to browse opened sessions:
by IP (IPv4 and IPv6)
by double IP (sessions opened by the same user from multiple computers)
It can be used to delete a session
LL::NG can be used to notify users with a message when authenticating. This can be used to inform of a change in access rights, the publication of a new IT charter, etc… (See notifications for more details)