Home/IDM360

What is Corporate Single Sign-on?

By |2019-09-26T14:38:04-04:00October 18th, 2015|Corporate Single Sign-On, IDM360|

What is Corporate Single Sign-On? Corporate Single sign-on (SSO) is the process of allowing an organizations employees to access a wide variety of company services without needing to maintain and enter separate user-ids and passwords for each site.  The types of services that employees might use include everything from time-card entry to travel management, [...]

Integrating Two-Factor Authentication into Legacy Web Applications

By |2016-10-13T14:31:13-04:00August 11th, 2015|IDM360|

Integrating MFA into Legacy Web Sites Two factor or multi-factor authentication is fast becoming a requirement for secure web applications. Simply offering a userid/password screen is no longer considered secure for many critical applications protecting sensitive data. Companies and organizations that wish to protect customer-facing web sites with two-factor authentication face extra challenges including: [...]

Comments Off on Integrating Two-Factor Authentication into Legacy Web Applications

Why is Identity Management so difficult

By |2016-10-13T14:31:19-04:00April 14th, 2014|IDM360|

Unified/centralized Identity Management is the goal of many if not most organizations.  Let's consolidate our numerous separate directories and applications under a common, centralized and federated directory to simplify user and rights management.  A large industry has emerged to assist with this task with sophisticated (read expensive) tools.  Yet, after initial, painful forays into consolidating [...]

Comments Off on Why is Identity Management so difficult

Enterprise IT Challenges for Terminated Employees

By |2016-10-13T14:31:21-04:00June 22nd, 2013|IDM360|

Companies are facing increased pressure to remove employees that have left the company from all computer systems where they may have access to sensitive data. These pressures are coming from a number of sources.  Regulations like the MA201 privacy act and HIPPA are creating strict controls around the protection of customer personal data.  Increasingly, companies [...]

Comments Off on Enterprise IT Challenges for Terminated Employees

OAuth and SAML: Mobile meets enterprise

By |2016-10-13T14:31:23-04:00May 13th, 2013|IDM360|

OAuth and SAML: Mobile meets enterprise OAuth has become the de-facto standard for mobile application authentication.  SAML is the single sign-on mechanism of choice for enterprise web applications.  Why would you need both?  Imagine this common scenario.  You are deploying a cool new mobile application on a Mobile App Server in the cloud. Some [...]

Comments Off on OAuth and SAML: Mobile meets enterprise

Is OAuth a good protocol for Single Sign-on?

By |2016-10-13T14:31:26-04:00May 13th, 2013|IDM360|

I've seen a number of posts stating that Open Authorization (OAuth) is not a good/safe/efficient protocol for Single Sign-on (SSO). The main argument is that OAuth is intended for authorization (asking permission to use a resource) rather than authentication (confirming a user is who they say they are). The reality is that before you can [...]

Comments Off on Is OAuth a good protocol for Single Sign-on?

Key Considerations for Home-Grown ID Synchronization

By |2016-10-13T14:31:27-04:00January 22nd, 2013|IDM360|

Most companies that implement SSO need to synchronize the IDs that users will use between systems.  This critical requirement is often seen as an afterthought and implemented via home grown batch scripts that copy the IDs from one system to another.  This can seem simple at first but quickly increases in complexity.  If you are [...]

Comments Off on Key Considerations for Home-Grown ID Synchronization

Top 10 Pitfalls of Home-Grown SAML Solutions

By |2016-10-13T14:31:33-04:00September 27th, 2012|IDM360|

Many companies facing partner pressure to implement SAML compliant SSO solutions and tight project deadlines, often decide to embark on the effort of building their own home-grown implementation.  They typically underestimate the effort and complexity involved, and quickly discover, that even if they are leveraging a SAML library, there are quite a few important issues [...]

Comments Off on Top 10 Pitfalls of Home-Grown SAML Solutions

Top 4 challenges of proprietary SSO solutions

By |2016-10-13T14:31:41-04:00September 4th, 2012|IDM360|

Top 4 challenges of proprietary SSO solutions Firms of all sizes often choose to implement their own Single Sign-On systems to facilitate internet connections with their B2B partners and SaaS applications.  Very often these solutions include duplicate storage and synchronization of user credentials (e.g. user names and passwords) as well as more complex proprietary [...]

Comments Off on Top 4 challenges of proprietary SSO solutions

SAML vs. WS-Federation for Single Sign-On

By |2016-10-13T14:31:47-04:00June 28th, 2012|IDM360|

SAML vs. WS-Federation for Single Sign-On Two very popular standards for Single Sign-On are Security Assertion Markup Language (SAML) and Web Services Federation Language (WS-Federation).  They are very similar but also incompatible.  What’s the difference?  Which one should you use?  What are some of the common pitfalls? Overview SAML and WS-Federation are [...]

Comments Off on SAML vs. WS-Federation for Single Sign-On