Single sign-on (SSO) solutions are a popular category within the identity and access management (IAM) sector. This is especially true when you look at the fact that SaaS adoption among small and medium sized businesses (SMBs) doubled in 2014, and has quadrupled since 2015 (Blissfully). According to the same report, SMBs use 50+ SaaS products on average, and IT admins have been adopting SSO solutions to help manage user access to these 50+ SaaS applications. However, single sign-on solutions can get extremely pricey, so it’s no wonder that IT organizations are searching for open-source single sign-on alternatives.
As mentioned above, the concept of SSO has been extremely valuable to IT admins. Single sign-on creates more security, increases productivity, and decreases user friction and frustration. While it is does its job well, web application SSO is only helping IT centralize user access to one pocket of resources. An open-source single sign-on platform might not even be the solution IT is really looking for. To understand this further, we need to step back and take a look at the problem web-app SSO was created to solve.
Web App SSO Met a Need
Before web-based applications surfaced, IT organizations were able to centralize user management solely using Microsoft® Active Directory®. This was possible because their networks were largely Windows® based and on-prem. Then IT lost some of this capability when web-based applications exploded onto the market. Users needed to access them, but AD didn’t let you connect to them with the same credentials. That led to less control, decreased security and increased friction for end users. A generation of web app SSO providers – often called IDaaS solutions – emerged to solve this gap. As they gained popularity, friction emerged both in terms of cost and capability, and thus, the interest in open-source single sign-on solutions.
The Issues with Creating an Open-Source SSO Solution
Unfortunately, web-app SSO doesn’t lend itself well to open-source. OpenLDAP™, FreeIPA, Samba, and other solutions in the IAM world are popular open-source alternatives to the Microsoft Active Directory identity provider. The (Read more...)
*** This is a Security Bloggers Network syndicated blog from JumpCloud authored by Natalie Bluhm. Read the original post at: https://jumpcloud.com/blog/open-source-single-sign-sso/