From the course: Cloud Data, Platform, and Applications Security by Pearson

Unlock this course with a free trial

Join today to access over 25,200 courses taught by industry experts.

Single sign-on

Single sign-on

A huge benefit of federated access, that relationship between the identity provider or the token service and the consumer of a service and a service provider is single sign-on. A single sign-on service is an integrated solution for principals, could be a user or a device to log into all of their local, remote, and cloud-based services for one-time sessions. Implementing SSO should be made more secure by combining multi-factor authentication and other advanced mechanisms. Why is that? Well, that single sign-on, whatever credential you're using, whatever method, is the key to your kingdom. So if somebody's able to compromise that or steal that, they have access not only to your local resources, but every other thing that you're single signing on to. So typically single sign-ons and the identity provider are separate services. The single sign-on service leverages the identity provider to validate principal identity and doesn't actually store the identity data. So for example, a single…

Contents