|
| |
|
|
Single
Sign-on Implementation
|
Implementation
For Today’s Complex Enterprises
Many traditional single
sign-on solutions fail to deliver their intended benefits because they weren’t
designed to meet the complexities of today’s enterprises. Single
Sign-On is poised to effectively manage the complete implementation cycle in
well-engineered deployment phases. It addresses this important requirement
in several ways:
Phased
Implementation. Organizations
can implement Single Sign-On in phases, based on where user pain is
the greatest and which applications are the most critical. Then, over
time, Single Sign-On can be deployed in stages to other business units or
departments.
The
Database. In
the past, building a single sign-on database was a time consuming and
resource-intensive process. Single Sign-On provides unique facilities
that automatically create a central repository for user IDs and passwords.
No
Clients.
Single Sign-On for Web does not require installation of software on the
client workstation. For internal, non-Web users, a thin client configuration
requires minimal software on user workstations. This approach minimizes
installation and maintenance, making Single Sign-On a feasible and scalable
solution.
Open
Design.
Single Sign-On’s open design allows organizations to improve underlying
security facilities to meet future requirements. New authentication or
authorization mechanisms — such as PKI and digital certificates, or
one-time passwords — can be plugged-in behind the scenes without users
being aware of any change.
Centralized
Or Distributed Management.
Single Sign-On includes several management tools, including a command line
language, the Single Sign-On Assistant (a graphical user interface),
and the Single Sign-On for Web Assistant. Single Sign-On
also allows distributed management. For example, certain users can be
designated as group or password managers to reduce the administrative burden
on system administrators.
Auditing.
Single Sign-On includes
auditing as part of the product or it can be integrated with the
Audit product.
|
