Fighting Password Fatigue with SSO

by BIO-key Team 0 Comments

Everyone hates passwords, but what most users hate about them is how many they have to remember. In many organizations it has become a requirement to have different complicated passwords for different applications that store valuable and confidential data. So if you have ever just felt overloaded with tons of passwords from work, personal finance, or your Netflix account, you could be suffering from Password Fatigue.

Imagine using three important applications in your department daily, and being an integral part of your department, your workflow affects the workflow of many others, so having to remember...

  • HZh-7At2gUy
  • q_9USFun&L&
  • xj_3Bq=NCvb

...seems very complicated. While these passwords fulfill many password policies and are very strong passwords, they are unrealistic to remember. Additionally, there's no valid point in writing it down on a piece of paper or your phone since it could be stolen that way.

Organizations today must offer their employees and customers secure, reliable, and advanced technology, but with accelerated changes presented by the novel coronavirus, many employees are working remotely and using the cloud. Now, organizations are more underprepared than before, so they have to rethink the traditional methods of passwords and learn to balance user experience with security.

While it seems that fighting password fatigue is inevitable, with all your users having to manually log into each web application, Single Sign-on (SSO) helps to eliminate user frustration. Once a user has logged in through SSO, they are automatically granted access to other integrated web applications. However, with this in mind, eliminating barriers to access requires an SSO solution that can create both a streamlined and secure login.

A good SSO solution would give users the secure access to one portal that integrated all the applications they were using, improving the user experience.

A well integrated SSO solution can be both secure and user friendly. For security purposes, an SSO solution should increase security by using any combination of transparent barriers, implementing configurable corporate password policies, and adding stronger authentication using tokenless, two-factor authentication and/or knowledge-based authentication. While security should not be overlooked when considering an SSO solution, a good SSO solution will deliver heightened security measures without issue.

On the other hand, an SSO solution should not only be secure, but also give you and your users a streamlined login experience. The SSO solution should eliminate the need to develop and maintain your own portal and manage external users' credentials. Also, it should reduce the number of password required to remember and reduce the number of Help Desk calls related to password resets and recoveries.

It goes without saying that single sign-on delivers seamless access to all applications, lowers IT costs, and increases security. However, finding the ideal SSO solution that can integrate well with your company that can do the above and much more is difficult.

The ideal solution for common login frustrations is a product that can create a single or federated authentication process to handle multiple local and cloud applications, while providing a centralized point of secure access. Implementing a SAML (Security Assertion Markup Language) SSO option with PortalGuard as the Identity Provider achieves the goal of eliminating password issues while providing more:

  • Reduce the number of passwords users are required to remember and manage.
  • Implement and enforce configurable password policies.
  • Reduce password-related Help Desk calls related to password and access issues, and many more.

Read more about the benefits of an SAML SSO option in our tech brief here.

Tags: Authentication Security, #infosec, IT Security, #ITSecurity, PortalGuard, #singlesignon, PassiveKey, Password Security, Single Sign-On, Single Sign-On (SSO)

BIO-key Team

Author: BIO-key Team