Perancangan dan Implementasi Single Sign On (SSO) Berbasis Central Authentication Service (CAS) dan Lightweight Directory Access Protocol (LDAP) di Universitas Advent Indonesia

Penulis

  • Erick Martua Sinurat
  • Andrew Pakpahan

https://doi.org/10.36342/teika.v5i1.145

Abstrak

Abstrak

Dewasa ini aplikasi web beftumbuh cukup pesat sejalan dengan sistem pengaksesan dan otentikasi aplikasi web yang juga turut berkembang. Sebagian besar aplikasi masih menggunakan sistem otentikasi dari sistem aplikasi tersebut, dengan demikian untuk otentikasi pada aplikasi web yang berbeda dilakukan secara terpisah. Pada penelitian ini ini penulis membahas perancangan dan pengimplementasian sistem Single Sign On (SSO) berbasis Central Authentication Service (CAS) dan Lightweight Directory Access Protocol (LDAP) di Universitas Advent Indonesia (UNAI), Tujuan dari penelitian ini ialah untuk menggabungkan aplikasi web ke dalam sebuah sistem otentikasi yang terintegrasi. Sehingga aplikasi yang terpisah dalam, otentikasinya akan diintegrasikan menggunakan metode SSO, dengan demikian setiap user dapat memilki satu akun yaitu satu username dan satu password untuk mengakses aplikasi web yang sudah terintegrasi dengan SSO yang ada dalam jaringan.

Perancangan dan pengimplementasian SSO digunakan aplikasi CAS (Central Authentication System) dan basis data yang digunakan ialah LDAP. CAS digunakan untuk menjembatani otentikasi antara aplikasi web yang berbeda, dan LDAP digunakan sebagai basis data pengguna/ dimana semua data pengguna yang digunakan untuk login pada CAS tersimpan di dalam LDAP. Implementasian SSO cukup memiliki banyak manfaat bagi user yang mengakses aplikasi web, dengan kelebihan-kelebihan yang ditawarkan SSO mempermudah user dalam mengakes dan melakukan otentikasi pada aplikasi web. Sistem SSO telah diuji pada aplikasi web di UNAI. Sistem SSO yang telah diintegrasikan pada aplikasi web telah berjalan dengan baik. Namun agar keamanan komunikasi client-seruer lebih terjamin sistem harus menggunakan seftifikat yang dipercaya.

 

Abstract

Nowadays web applications grow quite rapidly in line with system access and authentication for web applications that also helped develop. Most applications still use tire system authentication of the application system, thereby to authenticate on a different web application done separately. In this research the author discusses the design and implementation of the system of Single Sign On (SSO) based Central Authentication Seruice (CAS) and Lightweight Directory Access Protocol (LDAP) at Adventist University of Indonesia (UNAI). The purpose of this research is to incorporate into a web application authentication system that is integrated. So that a separate application in the authentication will be integrated using the SSO method, so each user can have one account that is one username and or-,e password to access the web application is already integrated with the SSO on the network. Designing and implementing SSO applications use CAS (Central Authentication System) and the database used was LDAP. CAS authentication is used to bridge between different web applications, and LDAP is used as a user database, where all user data that is used to log on the CAS stored in LDAP. Implementing SSO has many benefits for users who access the web application, with the advantages offered by SSO simplify user access and authentication in web applications. SSO system has been tested on a web application in UNAI. SSO system that has been integrated in web applications has been going well. However, to increase security of client-server communication, system should use a trusted certificate.

Article Metrics

Unduhan

Data unduhan belum tersedia.

Referensi

Aaslund, K.,dan S, Larsen. (2007). OTS-Wiki: A Web Community for Fostering Evaluation and Selection of Off-The-Shelf Software Components. Department of Computer and Information Science. Norwegian University of Science and Technology (NTNU).

Arkills, B. (2003). LDAP Directories Explained: An Introdudion and Analysis. Addison Wesley. Boston, MA 02116, U.S.A.

Brad, M. (2003), LDAP Theory and Management, SAGE-AU Conf 2003, brad.marshall@member.sage-au.org.au

Carter, G. (2003). LDAP System Administration. O'Reilly' 1005 Gravenstein Highway North Sebastopol, CA 95472, U.S.A.

Djunawidjaja, J. (2005). Intergrasi User Account dengan LDAP. Jakarta: Info Linux.

Howes, T. A., Smith, M. C., Good, G. S. (2003). Understanding and Deploying LDAP Directory Services, @nd Edition. Addison Wesley Profesional.

Mannaert, H., Gruyter, B. D., Adriaenssens, P. (2003). Web Portal for Multicast Delivery Management. Internet Research: Electronic Networking Applications and Policy. Vol. 13, No. 2, pp 94-99.

Mcleod, R. George, J.R. (2OOB). Sistem Informasi Manajemen Jakarta : Salemba Empat

Orell, D. (2005). Authentication Syst:ems and single sign-on (sso). Italy : TERENA EuroCAMP.

Pascal, A., Julien, M., Vincent, M. (2004). ESUP-Poftail : open source Single Sign-On with CAS (Central Authentication Service) Paper On EUNIS2004.

Single Sign On, http://id.wikipedia.org

Single Sign On, http://id.wikipedia.org/wiki/Single-sign-on, diakses pada tanggal 16 November 2010

Sukmana, C.R. (2006). Pengenalan LDAP. Ilmu Komputer

Turban, E., Rainer, R, K JR., Potter, R. E. (2005). Introduction To Information Technology td Edition. John Wiley & Sons, Inc. U.S.A.

Tuttle, S. (2004), Understanding LDAP Design and Implementation. North Castle Drive Armonk: IBM

Voglmaier, R. E. (2004), The ABCs of LDAP: How to Install, Run, and Administer

LDAP Services, Washington, D'C : Auerbach Publications.

Yuhefizar., Mooduto, H.A., Hidayat, R, (2008). Cara Mudah Membangun Website Interaktif Menggunakan Content Management System Joomla. Jakarta : PT Elex Media Komputindo.

##submission.downloads##

Diterbitkan

2013-04-01

Cara Mengutip

Sinurat, E. M., & Pakpahan, A. (2013). Perancangan dan Implementasi Single Sign On (SSO) Berbasis Central Authentication Service (CAS) dan Lightweight Directory Access Protocol (LDAP) di Universitas Advent Indonesia. TeIKa, 5(1), 37-50. https://doi.org/10.36342/teika.v5i1.145

Terbitan

Vol 5 No 1 (2013): Teika April 2013

Bagian

Internet

Lisensi

The submitting author warrants that the submission is original and that she/he is the author of the submission together with the named co-authors; to the extend the submission incorporates text passages, figures, data or other material from the work of others, the submitting author has obtained any necessary permission.

Articles in this journal are published under the Creative Commons Share Alike Attribution Licence (CC-BY-SA  What does this mean?). This is to get more legal certainty about what readers can do with published articles, and thus a wider dissemination and archiving, which in turn makes publishing with this journal more valuable for you, the authors.

By submitting an article the author grants to this journal the non-exclusive right to publish it. The author retains the copyright and the publishing rights for his article without any restrictions.