Ask anyone that’s not an identity and access management expert to define IAM, and I’ll bet the majority of the time they’ll describe single sign-on (SSO). It’s the easiest to understand, most visible and perhaps highest impact area of IAM – at least as far as end users (and sometimes management) are concerned. SSO has long been considered the “holy grail” of IAM. But anyone that’s attempted a single sign-on project knows that they can be difficult and with the constantly evolving landscape of user types, applications, authentication methods, and security and compliance requirements the project is never actually done.
But the benefits of SSO can be so overwhelming – happy users, IT free to pursue strategic projects, increased security – that it’s certainly worth the effort.
One of the unique aspects of the One Identity family of IAM solutions is the breadth and depth of its SSO offerings. I don’t know of another vendor that can offer excellent solutions for everything from federation to enterprise SSO and from web SSO to true SSO. With this truly comprehensive SSO offering, we’ve learned a few things that can help your SSO project (whatever form it may take) be more successful.
I’ve included these tips in a new eBook called Future-proofing Your Tactical IAM Projects , which also talks about password management, multifactor authentication, and directory management.
These tips include:
- Be inclusive —Approach SSO from the mindset that you are going to implement a solution that includes the widest range of the systems you have in your environment.
- Don’t settle for the lowest common denominator — The price of not being able to take advantage of the advanced security and ubiquity of newer standards is not worth the convenience, particularly since solutions exist that provide the best of both worlds.
- Don’t make users’ lives difficult — Look for SSO solutions that provide a seamless experience whether the user is on-premises, remote or switching between the two. And don’t forget the possibility that users may want and need access from devices not controlled by the organization
And right on the heels of SSO is password management. A self-service password management solution is the perfect complement to an SSO program and no password management program is complete without the unification and password reduction available through a good approach to SSO. And don’t forget the benefits of multi-factor authentication where and when you need that extra layer of security.
Learn how to Achieve Superior SSO Today
And for a more in-depth discussion of the options available for SSO from the Dell One Identity family of IAM solutions watch this video: On the Board - Access management for the way we work today.