Security News > 2021 > May > Is Single Sign-On Enough to Secure Your SaaS Applications?

Is Single Sign-On Enough to Secure Your SaaS Applications?
2021-05-20 03:21

Real-Life Risks Involved in SSO. While SSO facilitates ease of access to a great extent, it also comes with some amount of imminent risk.

Security researchers from Micro Focus Fortify showcased in 2019 the dangers associated with SSO vulnerabilities in Microsoft's authentication mechanism.

Super admins-the most powerful users in the SaaS security posture - will often bypass SSO and IAM parameters without any hiccups.

SSO tools alone are not enough to protect against unauthorized entries into an organization's SaaS estate.

There are certain steps you can take to avoid the risks presented by SSO. Run an audit and identify users and platforms that can bypass SSO and deploy app-specific MFA to ensure proper configured password policies for users.

In addition to vetting each user in your SaaS ecosystem, Adaptive Shield will enable you to look at the configuration weakness across your whole SaaS estate, SSO domain included, through every setting, user role, and access privilege.


News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/3KArN4yzigE/is-single-sign-on-enough-to-secure-your.html