What does the Single Sign-On bring?
Nowadays there are lots of applications (e-mail, online banking, ...) which require Internet and Intranet log-in. For each of these applications, a unique name and password is required. Each user thus assumes several identities, which ultimately lead to forgetting passwords and an increased vulnerability to phishing attacks.
SSO (single sign-on system) is a mechanism where the user enters their login information only once and then the single sign-on allows him or her access to all accessible systems. In other words, it is not necessary to enter your login information for accessing each of the systems that exist within the SSO.
SSO and portal
In the case of a portal, the single sign-on and authentication is provided by the portal itself. After you log in, the user gains access to all applications within the portal (portlets).
Similarly, the portal can be integrated into a single sign-on management system within the company, which provides user management (e.g. LDAP) and their SSO to all company systems (eg, CAS)
Examples are two applications (portlets) from different vendors incorporated into the portal. Without a single sign-on system, each of these applications require entering specific sign-on information. When using SSO, the log-in is delegated to the portal and access to both applications is provided after entering a single username and password. Another advantage is that both applications (portlets) do not have to deal with the user management module, thereby reducing the development cost.
Benefits of using SSO
- SSO to all applications (the user has a single login name and password)
- Reduces the possibility of phishing attacks, because users are not trained to enter their password everywhere without thinking
- The reduction of requirements (cost savings) on the system management IT help desk regarding forgotten passwords
- Centralized management of a single system for logging