PESMA K.H Mas Mansur ums every year, there are a lot of students from many cities and countries who want to stay in the boarding house. Because of the increasing number of students, PESMA should increase the facilities. Internet is

very important for staff and students. Staff accesses the internet to manage the data. Student accesses the internet to find and access the information and journal. Single Sign On (SSO) is a system which facilitates a user account for

accessing the data in servers. This method is implementation at PESMA KH Mas Mansur UMS which integrate between information system and hotspot. Install and configuration SSO server, configuration router hotspot. Student doesn’t need to memorize many usernames and passwords, eases data processing. If each server has user data, then the user data processing (add, delete, edit) should be done in every server. By using SSO, only need one time process. The SSO implementation helps student for using information system and hotspot access with one account login that has been registered and helps

administrator to organize data about user who access system. It is caused by the use of LDAP as single user data. Furthermore data is stored centrally in one server. After implementing SSO students need only to memorize one username and password to login to any information system and hotspot acces

, Agus Ulinuha, ST., MT., Ph.D

Riyanto, Agus

UMS Digital Library - Selamat datang di UMS Digital Library

DESIGN AND IMPLEMENTATION OF SSO (SINGLE SIGN ON) USING LDAP AUTHENTICATION FOR INFORMATION SYSTEM AND HOTSPOT ACCESS AT PESMA KH MAS MANSUR UMS  FINAL PROJECT REPORT Submitted as a Partial Fulfillment of the Requirements for Getting  the Bachelor Degree of Computer Science  in Department of Informatics, Faculty of Communications and Informatics Universitas Muhammadiyah Surakarta By: Agus Riyanto L200102013  DEPARTMENT OF INFORMATICS FACULTY OF COMMUNICATIONS AND INFORMATICS UNIVERSITAS MUHAMMADIYAH SURAKARTA 2014 ii     iii   iv  CONTRIBUTION LIST  Research titled “Design and Implementation of SSO (single sign on) using LDAP Authentication For Information System and Hotspot Access At PESMA KH MAS MANSUR UMS” is submitted as a partial fulfillment of the requirements for getting bachelor degree of Computer Science of Computer Science at the Department of Informatics of  Muhammadiyah University of Surakarta, as far as I know is not a plagiarism of a research that has been published, except the information sources in bibliography that is to solve the problems. The author would like to express the contributions list in the process of the final project: 1. The author installs Linux Ubuntu Server. 2. The author designs SSO. 3. The author installs FREE RADIUS. 4. The author installs OPEN LDAP. 5. PESMA Information System is made by another programmer (The information system has been available). 6. The author installs Hotspot System. 7. The author operate the system. 8. The author uses Laptop with specification Processor Intel® atom™ CPU N450 1.66Ghz, RAM 2GB to configure server.  v        vi  MOTTO AND DEDICATION  MOTTO: Surely there is ease after hardship. (Al Insyirah: [94:6]) “Do not put off today’s work for tomorrow.” (Umar bin Khatab) “A person who never made a mistake never tried anything new.”  (Albert Einstein) “If you can dream it, you can do it.” (Walt Disney)  DEDICATION:  Thank you to Allah SWT who has given me his blessing, so the author complete  this research. This research is dedicated to 1. My parents, who support and pray for my best. Thank you for always be there for me. 2. My brother, Suranto who always support me. 3. My future, i do not know who you are and i believe that you are there. 4. My generation, this research report marks that I have a life to get my achievement. 5. Moslem people around the world. Thank you for your prayer     vii  ACKNOWLEDGEMENT  Alhamdulillahirobbilalamin, praise and gratitude to Allah SWT, because of his blessings and guidance the final project by the titled “Design and Implementation of SSO (single sign on) using LDAP Authentication For Information System and Hotspot Access At PESMA KH MAS MANSUR UMS”  can be done. This final project is structured as the obligations to complete the bachelor degree program. The author realizes that this project is far from perfectness, therefore suggestions from reader is wellcome by the author. The research can be done because of helping and supporting from other people. Therefore, the author sincerely would like to say thanks and appreciations to:  1. Allah SWT who has given me my best.  2. Husni Thamrin, S.T, M.T., Ph.D. as the Dean of the Faculty of Communications  3. Dr. Heru Supriyono, M.Sc as the Head of Department of Informatics, Universitas Muhammadiyah Surakarta. 4. Endah Sudarmilah, S.T., M.Eng as academic advisor who has given me a knowledge and direction. 5. Agus Ulinuha, S.T., M.T., Ph.D as research advisor who always give his suggestions, stories and motivations to the author. viii  6. The lectures and staffs of the Faculty of Communications and Informatics, and Department of Informatics for their help and knowledge which are given to me.   7. Parents, who always pray, motivate to the author. Thank you very much. 8. My friends and staffs in PESMA K.H. Mas Mansyur. Thanks for accompanying me during my study. 9. All friends, especially informatics engineering student year 2010. Thank you for accompanying me. 10. All parties who the author cannot mention one by one that helped to finish this final project. Finally, the author hopes that this final project report will give benefit for all researchers, authors, and reader. Amien Surakarta,   May 2014  Agus Riyanto   ix  TABLE OF CONTENTS  TITLE ....................................................................................................................... i APPROVAL .............................................................................................................ii ACCEPTANCE ...................................................................................................... iii CONTRIBUTION LIST ......................................................................................... iv MOTTO AND DEDICATION ................................................................................ vi ACKNOWLEDGEMENT .....................................................................................vii TABLE OF CONTENT .......................................................................................... ix LIST OF FIGURE ................................................................................................ xiii ABSTRACT .......................................................................................................... xvi CHAPTER I: INTRODUCTION ......................................................................... 1 1.1. Background of the Study .............................................................................. 1 1.2. Problem Description ..................................................................................... 2 1.3. Scope of Study ............................................................................................. 2 1.4. Objective ...................................................................................................... 3 1.5. Benefit .......................................................................................................... 3 1.6. Report Organization ..................................................................................... 4 CHAPTER II: LITERATURE REVIEW ............................................................ 5 2.1. Previous Work .............................................................................................. 5 2.2. BasicTheory ................................................................................................. 7 2.2.1 Single Sign On (SSO) ......................................................................... 7 2.2.2 Light Weight Directory Access Protocol (LDAP) .............................. 8 x  2.2.3 LDAP Models ................................................................................... 13 2.2.4 LDAP Namespace ............................................................................. 15 2.2.5 LDAP Object Structure ..................................................................... 17 CHAPTER III: RESEARCH METHODOLOGY ............................................ 18 3.1. Place and Period of Research ..................................................................... 18 3.1.1 Period of Research ............................................................................ 18 3.1.2 Place of Research .............................................................................. 18 3.2. Main and Supporting Tools ........................................................................ 18 3.2.1 Main Tools ........................................................................................ 19 3.2.1.1 Hardware ............................................................................... 19 3.2.1.2 Software ................................................................................ 19 3.3. Research Method ........................................................................................ 19 3.4. System Analysis ......................................................................................... 21 3.4.1 Technology Aspect ............................................................................ 21 3.4.2 Economic Aspect .............................................................................. 21 3.5. Designing System ....................................................................................... 21 3.5.1 Designing SSO Server ...................................................................... 22 3.5.2 Designing an Authentication Process of PESMA's Information System ........................................................................................................ 23 3.5.3 Designing Authentication Process of Hotspot at PESMA ................ 25 3.6. Implementation ........................................................................................... 27 3.7. Evaluation ................................................................................................... 27 3.8. Maintenance ............................................................................................... 27 xi  CHAPTER IV: RESEARCH FINDINGS AND ANALYSIS ............................ 28 4.1. Research Results ........................................................................................ 28 4.2. Installation Process ..................................................................................... 28 4.2.1 Installing LDAP Server ..................................................................... 28 4.2.1.1Installing Linux Ubuntu Server 12.04 ................................... 29 4.2.1.2 Installing OpenLDAP ........................................................... 29 4.2.1.3 Configuring Open LDAP ...................................................... 33 4.2.1.4 Installing and Configuring phpldapadmin ............................ 34 4.2.1.5 Installing and Configuring Freeradius .................................. 35 4.2.1.6 Installing LDAP Account Manager ....................................... 36 4.3 System Result .............................................................................................. 39 4.3.1 Display of Information of PESMA (e-PESMA) ............................... 39 4.3.1.1 Login Page ............................................................................ 39 4.3.1.2 Changing Password Page ...................................................... 40 4.3.1.3 "Profil Mahasiswa" Page ...................................................... 41 4.3.1.4 Edit Profil Page ..................................................................... 42 4.3.1.5 "Jadwal Kuliah" Page ............................................................ 43 4.3.1.6 "Nilai" Page ........................................................................... 43 4.3.1.7 "Kantin" Page ........................................................................ 44 4.3.1.8 Laundry Page ........................................................................ 45 4.3.1.9 "Pembayaran" Page ............................................................... 45 4.3.2 Display of Login Hotspot (PESMA Wi-Fi) ...................................... 46 4.3.2.1 Hotspot Login Page (PESMA Wi-Fi) ................................... 46 xii  4.3.2.2 Information Page ................................................................... 47 4.3.2.3 Contact Page ......................................................................... 47 4.3.2.4 Successful Login Page .......................................................... 48 4.3.2.5 Login Information Page ........................................................ 48 4.4 Testing System ............................................................................................ 49 4.5 System Analysis .......................................................................................... 49 4.5.1 Before and after implementation of SSO ................................. 49 4.5.1.1 Information System e-PESMA .................................... 49 4.5.1.2 Hotspot PESMA Wi-Fi ................................................ 53 4.5.2 Security System ....................................................................... 57 4.5.3 Advantage ............................................................................... 59 4.5.4 Disadvantage ........................................................................... 59 CHAPTER V: CONCLUSION AND RECOMMENDATION ....................... 60 5.1. Conclusions ............................................................................................... 60 5.2. Recommendation ....................................................................................... 60 BIBLIOGRAPHY ............................................................................................... 61 APPENDIX      xiii  LIST OF FIGURE  Figure 2.1 Example LDAP directory tree ............................................................. 14 Figure 3.1 Flowchart of Research ......................................................................... 20 Figure 3.2 Design of SSO Server .......................................................................... 22 Figure 3.3 Activity diagram of login of information system at PESMA .............. 23 Figure 3.4 Activity diagram of login of hotspot PESMA ..................................... 25 Figure 4.1 Installation process of OpenLDAP ...................................................... 29 Figure 4.2 Configuration of LDAP Resource Identifier ....................................... 30 Figure 4.3 Configuration of Distinguished name of the search base .................... 30 Figure 4.4 Choosing LDAP version ...................................................................... 31 Figure 4.5 Giving password for root-database ...................................................... 31 Figure 4.6 Processes for LDAP Account .............................................................. 32 Figure 4.7 LDAP Root account Password ............................................................ 32 Figure 4.8 LDAP server is installed successfully ................................................. 33 Figure 4.9 Scheme of LDAP at PESMA KH Mas Mansur UMS ......................... 34 Figure 4.10 Display of phpldapadmin .................................................................. 35 Figure 4.11 List of directory and free RADIUS file in SSO server ...................... 35 Figure 4.12 Display of LAM Page login .............................................................. 36 Figure 4.13 Display of LDAP account manager main page ................................. 37 Figure 4.14 Display of additional new user .......................................................... 37 Figure 4.15 Display of edit user page ................................................................... 38 Figure 4.16 Display of general setting page ......................................................... 38 xiv  Figure 4.17 Display of account type page............................................................. 39 Figure 4.18 Display of Login page of e-PESMA ................................................. 40 Figure 4.19 Display of changing password ........................................................... 41 Figure 4.20 “Profil Mahasiswa” page ................................................................... 42 Figure 4.21 Edit profil page .................................................................................. 42 Figure 4.22 Display of “Jadwal Kuliah” page ...................................................... 43 Figure 4.23 Display of “Nilai” page ..................................................................... 44 Figure 4.24 Display of “Kantin” page .................................................................. 44 Figure 4.25 Display of Laundry page ................................................................... 45 Figure 4.26 Display of “Pembayaran” page.......................................................... 46 Figure 4.27 Display of Hotspot login page (PESMA Wi-Fi) ................................ 47 Figure 4.28 Display of Hotspot Information page ................................................ 47 Figure 4.29 Display of Hotspot contact page ........................................................ 48 Figure 4.30 Display of Successful Login page ..................................................... 48 Figure 4.31 Display of User Information Page ..................................................... 49 Figure 4.32 Login  Authentication Process on Information System at PESMA Before Implementation Of SSO ............................................................................ 50 Figure 4.33 Display Table User in Databases Information System at PESMA Before Implementation of SSO  ............................................................................ 51 Figure 4.34 Login  Authentication Process on Information System at PESMA After  Implementation of SSO .............................................................................. 52 Figure 4.35 Display of LDAP Account Manager Main Page LDAP Server ........ 53 xv  Figure 4.36 Login  Authentication Process on Hotspot System at PESMA Before  Implementation of SSO ......................................................................................... 54 Figure 4.37 Display of Form Security Key  Access Point Login Hotspot Before Implementation of SSO  ........................................................................................ 55 Figure 4.38 Login  Authentication Process On Hotspot System at PESMA After Implementation of SSO ......................................................................................... 55 Figure 4.39 Display of Hotspot Login Page (PESMA Wi-Fi) After Implementation of  SSO ........................................................................................ 56 Figure 4.40 Display Result of scanner vulnerbelity account manager pages ....... 57 Figure 4.42 Result of scanner vulnerbelity information system e-PESMA .......... 58        xvi  ABSTRACT  PESMA  K.H Mas Mansur ums every year, there are a lot of students from many cities and countries who want to stay in the boarding house. Because of the increasing number of students, PESMA should increase the facilities. Internet is very important for staff and students. Staff accesses the internet to manage the data. Student accesses the internet to find and access the information and journal. Single Sign On (SSO) is a system which facilitates a user account for accessing the data in servers. This method is implementation at PESMA KH Mas Mansur UMS which integrate between information system and hotspot. Install and configuration SSO server, configuration  router hotspot. Student  doesn’t need to memorize many usernames and passwords, eases data processing. If each server has user data, then the user data processing (add, delete, edit) should be done in every server. By using SSO, only need one time process.  The SSO implementation helps student for using information system and hotspot access with one account login that has been registered and helps administrator to organize data about user who access system. It is caused by the use of LDAP as single user data. Furthermore data is stored centrally in one server. After implementing SSO students need only to memorize one username and password to login to any information system and hotspot access.  Keywords: single sign on (SSO), LDAP, Authentication  

Design And Implementation Of SSO (Single Sign On) Using Ldap Authentication For Information System And Hotspot Access At Pesma KH Mas Mansur UMS

http://eprints.ums.ac.id/31291/1/1._COVER%2C_ETC.pdf

Design And Implementation Of SSO (Single Sign On) Using Ldap Authentication For Information System And Hotspot Access At Pesma KH Mas Mansur UMS

Abstract

Similar works

Full text

Available Versions

UMS Digital Library - Selamat datang di UMS Digital Library