Is SSO safe?

SSO seems like a great way to simplify secure user authentication, but is it safe? If SSO is compromised, surely this poses a greater risk, as then all one's passwords can be accessed across all applications? 

33 Answers

author avatar
Top 5LeaderboardReal User

Firstly let me assure you once you have SSO integration in place using good tool then there is no chance of hacking. If you still think it can be you can go for the MFA(Multi Factor Authentication) where each user will be asked to provide second authentication(ike OTP,Finger Print).

MFA will make sure that authenticated user will only have access.

author avatar

Yes, it is completely secure, in the new identity unification tools you must add a key component, multi-factor authentication (MFA), so you can confirm that the authenticated user using the SSO credentials is not being impersonated or that their credentials are compromised, applies to personnel who manage platforms such as those who have access to sensitive information in the organization. Microsoft counts, for example, with Azure AD Premium, allows SSO, MFA, but is also supported over conditional authentication (CA).

author avatar

SSO is a good concept BUT the implementation is fundamentally flawed that’s why it is not secure.  Fortunately, that is very easy to fix and the solution on how to fix it it available now.

Find out what your peers are saying about Okta, Microsoft, Google and others in Identity and Access Management as a Service (IDaaS). Updated: October 2020.
442,041 professionals have used our research since 2012.