Surely I will look into the security aspect, but at this moment the code fails because 'use CGI' cannot be clubbed with other things like 'use Net::LDAP' or 'IPC:System::Simple'. If I disable them I could execute it.

But disabling them will take away the entire purpose of the script i.e. automated user management.

 
#!/usr/bin/perl
use strict;
use CGI;
use CGI::Carp;
#create CGI query object to get the SSO from URL
my $query = CGI->new;
my $sso = $query->param("sso");
$sso = shift;

print "Content-type:text/html\r\n\r\n";
print "<html>";
print "<head>";
print "<title>Application Management Sysyem</title>";
print "</head>";

if($sso eq "") 
{
   print "<h1>\n\nERROR: SSO is EMPTY!</h1>\n\n";
 }

else
{
use Proc::Background;
print "<body>";
print "<h2>You have entered $sso</h2>";
print "</body>";
print "</html>";
}
[download]

I really appreciate help.

my $sso = $query->param("sso");
$sso = shift;
[download]

These two lines in sequence don't make sense.

Either you read $sso from a CGI parameter, or you read it from the command line.

If you read it from a CGI parameter, you will be setting it to undef right afterwards with the above code. That doesn't make sense.

the code fails

What does that mean?

The code fails with 500: Internal Server Error. But if I don't use IPC::System::Simple and Net::LDAP, then it works fine.

About reading the variable $sso, it is reading from CGI but unless used a shift flag it cannot be parsed into the Perl api further. I hope this could have been done by METHODS "GET" or "POST" as well, but unfortunately I am not sure how to use those in this scenario.

As always, thanks for the insights.