My customer really liked something I had said the other day while discussing strategy around Identity and Access Management. The concept of SSO kept coming up, in dialog as well as in industry briefs on the topic, which we were reviewing, and I basically said,
“SSO isn’t a product you buy, it’s the by-product of a well architected Identity and Access Management strategy.”
That statement has begun to resonate and for good reason. While even I cannot deny that SSO products have their place, I disagree that it should be the first stop in your decision making process. Use an SSO product when you simply have no other choice. There are other options that can reduce complexity as well as the number of logon prompts.
1 comments:
Brad,i TOTALLY share your post ! The firt word from teh customer is "always" SSO... What the hell is this ! first, SSO is not the beginning of the journey, but more the final step, second, SSO is "not" a product but a "concept". Perharps you will start to implement a SSO product because you need it - but first, rationalize your directory, think about kerberos, etc...
Post a Comment