Enterprise Single Sign-On

Download Report

Transcript Enterprise Single Sign-On

5/2/2020

Kruthi Neela and Niharika Avasarala

ENTERPRISE SINGLE SIGN-ON

© Clemson University Fall 2009 1

Agenda

What is Enterprise Single Sign-On?

Why Enterprise Single Sign-On?

Components and implementation of Enterprise Single Sign-On

Multifactor Authentication – Better Security

Benefits of Enterprise Single Sign-On

5/2/2020 © Clemson University Fall 2009 2

5/2/2020

What is Enterprise Single Sign-On?

The advent of client/server applications and the evolution of the Internet have increased the number of identities that we need to remember to a significant extent

Single Sign-On

:

A mechanism which enables a user to access all computers and systems where he has access permissions without the need to enter multiple passwords through a single action of user authentication and authorization

© Clemson University Fall 2009 3

5/2/2020

Types of Single Sign-On Single Sign-On can be broadly classified into three types Enterprise Single Sign-On This type of single sign-on caters to the authentication needs of a wide range of applications including mainframe, terminal and web applications Web Single Sign-On This offers single sign-on services to a wide user base including business partners and customers of an organization but is limited to web based applications Federated Single Sign-On This is an extranet browser based authentication mechanism which provides single sign on to both employees and business partners.

The remote system grants access by validating identity assertions.

© Clemson University Fall 2009 4

Why Enterprise Single Sign-On?

5/2/2020 © Clemson University Fall 2009 5

5/2/2020

Components and Implementation of an Enterprise Single Sign-On system The components of an enterprise single sign-on system depends on the vendor providing the ESSO solution. Some of the most common components you find in any Enterprise Single Sign-On system are

Central Data Repository

Application/Web Server

Directory Server

© Clemson University Fall 2009 6

Components and Implementation of an Enterprise Single Sign-On system

5/2/2020 © Clemson University Fall 2009 7

5/2/2020

Multifactor Authentication Efficient implementation of ESSO can provide various benefits not only for the users but for the overall organizational information security as well. But, a poorly implemented SSO system can in fact compromise an organization’s data security

.

It is a common practice for organizations to use multifactor authentication for more robust security.

© Clemson University Fall 2009 8

Multifactor Authentication

5/2/2020 © Clemson University Fall 2009 9

5/2/2020

Benefits of Enterprise Single Sign-On

Cuts down the time wasted by users on password related activities

Reduces help desk costs

Reduces human error by maintaining data consistency throughout the organization

Ensures secure storage of passwords by encryption and so avoids information leaks

Lessens the responsibility of password protection schemes on users making it easier to enforce password policies

Protects confidentiality by restricting access according to users and groups

© Clemson University Fall 2009 10

Thank you … Questions?

5/2/2020 © Clemson University Fall 2009 11