The Basics of Single Sign-On

The basic summary of Single Sign-on is that SSO solutions allow users to input only one password in order to login to multiple applications or accounts. In order for SSO to work properly, software has to be integrated with a directory or database that stores username, passwords, and other relevant user account data. Most of the time, companies will use either Active Directory, LDAP, or SQL as their directory of choice.

There are a few different approaches that can be taken when setting up Single Sign-on, focused specifically on the standards being used. Typical approaches for the basics of SSO include the Security Assertion Markup Language (SAML), Kerberos Authentication, and even some smart card based methods. Each method involves a different protocol or set of standards in order to perform Single Sign-on. Currently, PortalGuard supports mainly SAML, Kerberos, Shibboleth, Cas and other industry standard protocols - depending on the requirements of a given environment.

For many reasons, industry standards make having only one password much more secure:

  • Secure Passwords in Transit
  • Remember a single password instead of many
  • Increased password policy adoption

For more information on Single Sign-on and the various protocols that PortalGuard supports, download the SAML SSO White Paper today.