Web-based ConsoleYou can manage every system aspect through a centralized web-based console that emulate a typical desktop environment using AJAX.
Multiple server supportIf you have more than one server with web applications that need login authentication, you can create a SUMO network to manage many authentication servers with unique database (a "cell").
Any server (a "node") have a SUMO Console to administrate and monitoring created network.
Prevent Session HijackingDynamically change the current session id with a newly generated one when user logs in and every about 10 requests.
Useful to improve security by reducing the risk of session-hijacking (is when a hacker get to know a user's session ID, and uses it to pretend he is that user).
Sessions ReplicationUsually all PHP applications don't support user session replica, so a session data is unknow between servers and a user cannot switch from each other without a relogin.
In a multiple servers environment, SUMO can create a unique user session between servers and save it on a special database table, so user can switch between servers with easy.
Users and GroupsYou can manage advanced users and groups profiles, define security policies for every user. Set account and password expiration, chose differents methods for password authentication (data source), LDAP, Active Directory, Oracle, Postgres and MySQL external servers. Also Unix local users password authentication is supported if web server running as root.
Log ManagerSUMO core have a small IDS (Intrusion Detection System) and complete logging messages system that trapping internal messages (alerts, warnings, notices) and users activity.
It can log data to file and database, or send it via e-mail.
Through Log Manager you can view all regisered messages and make search.
Filter input dataWith a special embedded function all input data (methods GET, POST and COOKIE) are filtered from login form. This add protection on your scripts/pages if you don't filter malicious code for Cross Site Scripting attack (XSS).
IP FilterA filter of IP addresses is embedded (much useful in an intranet network). You can set for every user an IP, or a range of IP's, where it can connect from.
Also, multiple failed login deny others requests from same IP for limited time that administrator can set.
Monitoring SessionsOn Sessions panel the administrator can control users sessions viewing many informations in real time:
- IP, country or intranet area
- browser type
- session timeout
- where is it
- client type
Another window show also required connections to the system to monitoring all unlogged visitors.
Multilanguage supportUsing a modular design SUMO can support all languages. See supported languages page to know which languages are available in the lastest release.
Theme supportYou can chose a skin/theme from themes library for any login page you have, or if you don't like it, you can make your personal theme and use it for your pages.
Export dataFrom some control panels you can export all data in Microsoft Excel or CSV format with a simple click, for example users and groups list, logs and others data, to manage it with others applications.