Enterprise Single Sign On(SSO)

In any organization working with confidential data, it is a foregone conclusion about the data being secure and the even employees need to authenticate themselves, to access the data. While this seems to be in perfect harmony with the current security standards, it however feels tedious for the employees providing their credentials every single time to access data.

The middle ground, can be achieved by using Enterprise Single Sign On(SSO). SSO covers the best of both worlds, ensuring data security while improving the ease of data access, for the users.

Before we can delve deep into Single Sign On(SSO), here are the disadvantages of not using one:

For users

  • Passcode remembrance
  • Passcode fatigue

For IT admins

  • Multiple credentials-based support tickets
  • Repeated requests to generate new credentials

All of the above disadvantages can be overcome by using Single Sign On(SSO). We'll see what are the other benefits of using a Single Sign On(SSO):

  • Switching between apps/web services is hassle-free.
  • Encrypt the passcode using DES(Data Encryption Standard), to prevent passcode-based unauthorized data access
  • Support for convention authentication methods such as AD authentication etc.,

MDM supports Single Sign On using Kerberos, a network authentication protocol which secures the passcodes by encrypting them using DES(Data Encryption Standard).

So, any apps and/or internal websites supporting Kerberos authentication in your organization can support Single Sign On(SSO).

The No Sign On method

Improving on the ease and security of Single Sign On, is the No Sign On or Zero Sign On method, whereby the employees needn't enter their passcode even once to access services. This can be achieved if the authentication is certificate-based. MDM supports Certificate-based authentication(CBA) using Simple Certificate Enrollment Protocol(SCEP)