When your workers log onto their computers, do they automatically, by entering one password and login name, gain access to all of your business’ software systems? Does their single login allow them to access the company’s Intranet, their e-mail systems and your company’s sales data? If so, your company’s software systems operate under a single sign-on system.
Different versions
There are several versions of single sign-on systems. Under a Kerberos-based system, workers must supply their login names and passwords when signing onto their computers. After this, they get a Kerberos ticket that gives them access to email clients, editing software and other systems. This happens because the Kerberos ticket supplies the user’s credentials to each new system that the user tries to access. This prevents workers from having to re-enter their passwords and login names each time.
Benefits
The main benefit of single sign-on is that workers don’t have to constantly enter passwords and logins every time they need to access a new software system. Not only does this prevent password fatigue for your company’s employees, it also saves time. Employees don’t have to stop working to enter their passwords throughout the day. Single sign-on might also save your company IT costs; your IT department won’t be swamped with as many calls from employees struggling to remember their passwords and login names throughout the day.
Cons
Of course, there is some risk to single sign-on. A hacker can gain access to your company’s software systems more easily if you rely on single sign-on. This is why it’s important for your company to tie single sign-on to authentication methods such as smart cards or one-time password tokens. As with all forms of electronic security, then, single sign-on isn’t perfect. You’ll have to take a close look at your company to determine whether this system is right for your business and your employees.