David COUTADEUR Clément OUDOTdcoutadeur@linagora.com coudot@linagora.com

What's new in LemonLDAP::NG 1.4?

2

About us

3

LemonLDAP::NG Presentation

4

Some history

2003 2006 2010 2014

Project creation

NG version

SAMLCAS

OpenID

1.4 release

5

Single Sign On

User

Web Application

WebSSO Portal

1

2

3

6

Access Control

UserWeb

Application

1

SSO

2

Authorization

3

7

Components

CommonCommon

ManagerManager HandlerHandler

PortalPortal

Administration interface

User interactions

Applications protection

8

Authentication backends

LDAPLDAPADAD

ApacheApache SAMLSAML

CASCAS RadiusRadius OpenIDOpenID

WebIDWebID

BrowserBrowserIDID

DBIDBI

YubikeyYubikey

9

Self Service

Password Password changechange

Password Password resetreset

Login Login historyhistory

10

Identity protocols gateway

SAMLSAMLCASCAS

OpenIDOpenID

11

New features of version 1.4

12

Bootstrap Skin

13

Self register service

Fill a form

First nameLast nameEmail

Validate by clicking link in email

Receive login and password in email

14

use Mouse

Configuration Configuration attributesattributes SessionsSessions

HandlerHandler CaptchaCaptcha

Cluster modeCluster mode

15

Session identifiers

MD5SHA256

8c7fef2b3820ecdea49614be7b769c62

9be0bab50d1c14b51264a7194fc2517cb25a5788e860cf672823dff434348dba

16

SAML IDP SSO initiated

11

22

IdentityProvider

ServiceProvider

http://auth.example.com/saml/singleSignOn?IDPInitiated=1&spConfKey=myserviceprovider

17

Nginx Support

LUA Perl

Work in progressHandler available on GitHub

18

Conclusion

19

Stay tunedhttp://lemonldap-ng.org

IRC #lemonldap-ng@freenode

http://mail.ow2.org/wws/

@lemonldapng

http://www.ohloh.net/p/lemonldap-ng

20

Thanks

OW2 Staff LemonLDAP::NG team LINAGORA

21

Questions?

22

Thanks for your attention