Main features

Full access control

LL::NG is a web single-sign-on system, but unlike some systems it can manage rights on applications based on regular expressions on URL.

Easy to customize

LL::NG is designed using Model–View–Controller software architecture, so you just have to change HTML/CSS files to custom portal.

Easy to integrate

Integrating applications in LL::NG is easy since its dialog with applications is based on customizable HTTP headers.

Unifying authentications (federation)

LL::NG can easy talk to other authentication systems using SAML, OpenID, CAS. it may be the backbone of a heterogeneous architecture. Its SOAP API can also be used to dialog directly with your custom applications.

Sessions

Session explorer

LL::NG Manager has a session explorer module that can be used to browse opened sessions:

by users
by IP
by date
by double IP (sessions opened by the same user from multiple computers)

It can be used to delete a session

Session restrictions

By default, a user can open several sessions. LL::NG can restrict this:

Allow only one session per user
Allow only one IP address per user
Allow only one session per IP address

Those capabilities can be used simultaneously or separately.

Double cookie

LL::NG can be configured to provides 2 cookies:

one secured (SSL only) for sensitive applications
one unsecured for other applications

So if the http cookie is stolen, sensitive applications stay secured.

Notifications

LL::NG can be used to prompt users with a message. This can be used to notify right changes,… See notifications for more.