Single sign-on (SSO)
Single sign-on (SSO) is an authentication method that allows an individual to use one set of login credentials to access multiple applications. This streamlines the login process, making it easier for the user to access accounts or conduct transactions without compromising security.
Frequently asked questions
What is single sign-on?
SSO is a form of session and user authentication that makes it possible for users to access multiple applications with a single set of credentials, such as a username and password. For example, many individuals sign in to Slack using their Google account.
How does SSO work?
SSO works by first validating user-provided credentials and then comparing them to data stored in an SSO policy server that specifies the applications users have permission to access. No further authentication checks are required for these permitted apps until the user logs out of their current session.
What are the benefits of single sign-on?
The biggest benefit of single sign-on (SSO) is accessibility. Using only a single set of credentials, users can access multiple applications without needing to remember dozens of passwords, in turn reducing the amount of time spent in the authentication process. SSO repositories also allow security teams to easily add or remove permitted apps from user profiles.
Is single sign-on safe?
While single sign-on is relatively safe if individuals choose a strong password, if attackers do compromise a user’s credentials, they gain access to all SSO-approved applications, in turn putting both business and personal data at risk. To minimize the potential problems of SSO, businesses may want to implement 2FA or MFA solutions that make it harder for attackers to gain access.