Single Sign-On, First of It’s Name, The Defender of Passwords and Unbreachable [fire] Wall

With SSO, services like Slack, Atlassian, Saleforce, etc. will not see your users' passwords because all authentication is handled centrally by the identity provider. Only the identity provider knows the user's password.

You have likely seen the news about Slack.

Slack resets thousands of user passwords four years after hack

They are resetting approx 1% (more than 100k accounts) user passwords after “new information from a 2015 security incident”.

Aside from the questionable 4-year-late development, there was an interesting footnote about accounts not affected: accounts logging in via single sign-on (SSO) provider.

This is a fact about SSO that people overlook!

Yes, Single Sign-On makes the user experience better.

AND

Of course it simplifies and saves time on administration.

But it also makes your organization a lot more secure .

Services like Slack, Atlassian, Saleforce, etc. will not see your users’ passwords because all authentication is handled centrally by the identity provider. Only the identity provider knows the user’s password.

None of the other services ever get to see it, hence they cannot loose it to one of the 1000s of data breaches every year

On top of that, if you only have to authenticate once, as opposed to entering a password in all 721 cloud services the average enterprise organization uses, it’s much easier to deploy 2 factor authentication–which has shown to be one of the key actions you can take to improve your system’s security.

To sum it up, Single Sign-On, especially when combined with 2FA, makes your enterprise IT precipitously more secure. And it manages to do this while easing your administrative load and providing you users a great IT experience.

At resolution, we know Single Sign-On. If you need to integrate your Atlassian (Jira, Confluence, Bitbucket, Bamboo) Server or Data-Center deployments into a SAML Single Sign-On infrastructure – check out our Apps.

Cookie	Duration	Description
_ga	1years 19days 23hours 59minutes	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_UA	1 minute	Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named `_dc_gtm_<property-id>`.
_gat_UA-44969175-9	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	23 hours 59 minutes	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the wbsite is doing. The data collected including the number visitors, the source where they have come from, and the pages viisted in an anonymous form.
CONSENT	16 years 3 months 13 hours	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
b3e783bb62	session	This cookie is set by the provider Zoho. This cookie is used for collecting information on user interaction with the web-campaign content. This cookie helps the website owners to promote products and events on the CRM-campaign-platform.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
NID	6 months	NID cookie, set by Google, is used for advertising purposes; to limit the number of times the user sees an ad, to mute unwanted ads, and to measure the effectiveness of ads.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

Cookie	Duration	Description
_calendly_session	21 days	Store user preferences
_zcsr_tmp	session	Used for website security
1e5a17c8ab	session	No description available.
3eb9b21c5c	session	No description available.
4662279173	session	No description available.
AnalyticsSyncHistory	1 month	Used to store information about the time a sync with the lms_analytics cookie took place for users in the Designated Countries
cookielawinfo-checkbox-functional	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
d4bcc0a499	session	No description available.
li_gc	2 years	Used to store consent of guests regarding the use of cookies for non-essential purposes
m	2 years	No description available.
zft-sdc	12 hours	This cookie stores metadata ( entrances, source etc) of a session which is used by full tracking. (https://www.zoho.com/privacy/cookie-policy.html)
zps-tgr-dts	1 year	This cookie stores the session's metadata on your website.
zsc	30 minutes	Zoho Service Communication Key.

Single Sign-On, First of It’s Name, The Defender of Passwords and Unbreachable [fire] Wall

Single Sign-On, First of It’s Name, The Defender of Passwords and Unbreachable [fire] Wall

Table of Contents

This is a fact about SSO that people overlook!

Subscribe to our newsletter:

Isaiah Pegues

Tags:

Related articles:

How to collaborate effectively if your team is remote

User management apps

productivity apps

Integration Apps

resources

company

Don’t miss any news!