Quick start tutorial

You should install Lemonldap::NG using packages, but you can also install it from the tarball.

apt install apt-transport-https
wget -O - https://lemonldap-ng.org/_media/rpm-gpg-key-ow2 | apt-key add -
echo "deb https://lemonldap-ng.org/deb stable main" > /etc/apt/sources.list.d/lemonldap-ng.list
apt update
apt install lemonldap-ng

curl https://lemonldap-ng.org/_media/rpm-gpg-key-ow2 > /etc/pki/rpm-gpg/RPM-GPG-KEY-OW2
echo "[lemonldap-ng]
name=LemonLDAP::NG packages
baseurl=https://lemonldap-ng.org/redhat/stable/$releasever/noarch
enabled=1
gpgcheck=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-OW2" > /etc/yum.repos.d/lemonldap-ng.repo
yum update
yum install lemonldap-ng

The defaut SSO domain is example.com. You can keep it for your tests or change it, for example for mydomain.com:

sed -i 's/example\.com/mydomain.com/g' /etc/lemonldap-ng/* /var/lib/lemonldap-ng/conf/lmConf-1.json
sed -i 's/example\.com/mydomain.com/g' /etc/nginx/conf.d/*
sed -i 's/example\.com/mydomain.com/g' /etc/httpd/conf.d/*
sed -i 's/example\.com/mydomain.com/g' /etc/apache2/sites-available/*

In order to be able to test, update your DNS or your local hosts file to map this names to the SSO server IP:

• auth.mydomain.com
• manager.mydomain.com
• test1.mydomain.com
• test2.mydomain.com

For example on your local computer:

echo "192.168.1.30 auth.mydomain.com manager.mydomain.com test1.mydomain.com test2.mydomain.com" >> /etc/hosts 

Since LemonLDAP::NG 1.2, the demonstration backend is configured by default.

Demonstration backend has hard coded user accounts:

Go on http://auth.mydomain.com and log with one of the demonstration account.

Try http://test1.mydomain.com or http://test2.mydomain.com

Log with the dwho account and go on http://manager.mydomain.com