Just login 1 time ?
Login with a username and password. This happens many times a day for all kinds of different services. To remember all these passwords, password applications are often used, user names and passwords are written down or too simple passwords are used for business-critical applications. However, it would be much more practical if there were a solution that would only require the user to log in properly secured once. This can be done through identity management in combination with single sign-on.
Several applications are used within many organisations. In some cases, this can lead to a large number of applications. User names and passwords can be very diverse. In this case, the password can change at any time for security reasons requiring periodic password changes or because of strict password requirements.
The problems that this can cause vary from uncomplicated, time-consuming to unsafe security situations. There may also be unnecessary pressure on the helpdesk by people who have forgotten their password or are too late in changing it.
Identity management in combination with Single Sign on (SSO) eliminates these problems. SSO ensures that only one username and password needs to be remembered via a central identity provider (e. g. Microsoft Azure Active Directory). This means one username and password in accordance with the security requirements to be remembered. There is also the possibility to apply Two-Factor authentication for an additional security layer.
Advantages of using SSO
- 1 Remember user name and 1 password
- Access to software applications without having to log in again
- Central management
- Access for applications can easily be denied in case of dismissal / out of service.
- No more passwords written down
- Simplicity for users in combination with high security requirements
Two factor authentication
When logging in to an application, it is verified that the log-in data is correct in order to gain access to that application. This process is authentication; a check of the data entered against the stored data. Three different features can be used during authentication. These characteristics are:
- Something you are (for example, an Iris or a fingerprint)
- Something you know (for example, a password or PIN code)
- Something you possess (token)
With the Two-Factor authentication, in addition to the combination of username and password, additional checks are carried out via a token solution, for example. There are several solutions for obtaining this Two-Factor authentication code:
- Physical token (think of the random reader at a bank)
- An app on the smartphone
- An SMS on the mobile phone
- A code via a (automated) telephone call
- Single sign on makes logging in for users simple, easy to use and secure. Organizations can therefore keep business-critical data easier and securely behind closed doors, making all user accounts more manageable.
If you would also like to know what we can do for your organisation, please contact us at firstname.lastname@example.org.