Cross-domain authentication

Presentation

Cookies are only sent to sites within the same domain. So if "auth.example.com " is your portal, it would have created a cookie only for ".example.com": the SSO will work for test.example.com but not for test.acme.com.

To bypass this, LemonLDAP::NG propose CDA: Cross-Domain Authentication. It will create cookies on all protected domains.

Configure LemonLDAP::NG

In Manager, go in General Parameters > Cookies > Multiple domain and active the functionality.

To use this feature only locally, edit lemonldap-ng.ini and in section [all] add the cda parameter:
[all]
cda = 1