Welcome on LemonLDAP::NG page



Lemonldap::NG provide SSO to Web based applications. The main program is an Apache Handler, acting like a reverse proxy for protected applications.

LemonLDAP::NG is the new version of Lemonldap (founded by Eric German) which is no more maintened.

The project leaderis Xavier Guimard.

It comes from a french administration project, managed by the MINEFI and the Gendarmerie Nationale.

Some facts

LemonLdap is the first SSO software deployed in French administrations. It can handle more than 200 000 users. Many private helds use it too.

Main Features

  • SSO for Web applications (Java, PHP, .Net, Perl, Ruby, Python, ...).
  • Virtual Private Networks for external access (HTTP/HTTPS gateway).
  • Strong authentication (LDAP, Kerberos, X.509, CAS, Liberty Alliance).
  • Authorization based on LDAP filters.
  • Authorizations inside application (subdirectories, or file types).
  • LDAP groups management.
  • Session sharing (SQL, memcached, SOAP).
  • Configuration sharing (SQL, SOAP, LDAP).
  • Password policy compliant.
  • Dynamic application menu.
  • Password change form.
  • Push authentication trough HTTP Basic.
  • Form replay.
  • SAML Service Provider, identity Provider and Attribute Provider.