Transcript Enterprise Single Sign-On
5/2/2020
Kruthi Neela and Niharika Avasarala
ENTERPRISE SINGLE SIGN-ON
© Clemson University Fall 2009 1
Agenda
What is Enterprise Single Sign-On?
Why Enterprise Single Sign-On?
Components and implementation of Enterprise Single Sign-On
Multifactor Authentication – Better Security
Benefits of Enterprise Single Sign-On
5/2/2020 © Clemson University Fall 2009 2
5/2/2020
What is Enterprise Single Sign-On?
The advent of client/server applications and the evolution of the Internet have increased the number of identities that we need to remember to a significant extent
Single Sign-On
:
A mechanism which enables a user to access all computers and systems where he has access permissions without the need to enter multiple passwords through a single action of user authentication and authorization
© Clemson University Fall 2009 3
5/2/2020
Types of Single Sign-On Single Sign-On can be broadly classified into three types Enterprise Single Sign-On This type of single sign-on caters to the authentication needs of a wide range of applications including mainframe, terminal and web applications Web Single Sign-On This offers single sign-on services to a wide user base including business partners and customers of an organization but is limited to web based applications Federated Single Sign-On This is an extranet browser based authentication mechanism which provides single sign on to both employees and business partners.
The remote system grants access by validating identity assertions.
© Clemson University Fall 2009 4
Why Enterprise Single Sign-On?
5/2/2020 © Clemson University Fall 2009 5
5/2/2020
Components and Implementation of an Enterprise Single Sign-On system The components of an enterprise single sign-on system depends on the vendor providing the ESSO solution. Some of the most common components you find in any Enterprise Single Sign-On system are
Central Data Repository
Application/Web Server
Directory Server
© Clemson University Fall 2009 6
Components and Implementation of an Enterprise Single Sign-On system
5/2/2020 © Clemson University Fall 2009 7
5/2/2020
Multifactor Authentication Efficient implementation of ESSO can provide various benefits not only for the users but for the overall organizational information security as well. But, a poorly implemented SSO system can in fact compromise an organization’s data security
.
It is a common practice for organizations to use multifactor authentication for more robust security.
© Clemson University Fall 2009 8
Multifactor Authentication
5/2/2020 © Clemson University Fall 2009 9
5/2/2020
Benefits of Enterprise Single Sign-On
Cuts down the time wasted by users on password related activities
Reduces help desk costs
Reduces human error by maintaining data consistency throughout the organization
Ensures secure storage of passwords by encryption and so avoids information leaks
Lessens the responsibility of password protection schemes on users making it easier to enforce password policies
Protects confidentiality by restricting access according to users and groups
© Clemson University Fall 2009 10
Thank you … Questions?
5/2/2020 © Clemson University Fall 2009 11