Collaborate Disseminate
End users tend to get a bad rap in the security business because they are often the weakest security link. They fall for phishing schemes, use weak passwords and often unknowingly are the conduit for malicious actors getting into your company’s systems. Okta wants to change that by giving end users information about suspicious activity […] Continue reading Okta wants to make every user a security ally
My organization uses SSO for its applications i.e. Once a user logs into his Windows 10 workstation, he accesses his web application without login. I was informed that the web applications uses NetIQ Identity Manager(IdP) and Kerberos in t… Continue reading How does the browser know windows logged in user id or Kerberos TGT?
A company I am working for is advocating for single sign on for their Ecommerce site and an Online clinical testing platform that contain sensitive patient information.
My concern is the sensitive information on the patient… Continue reading What are some reasons a company should not go with single sign on?
We have a third party mobile app that will link to a dashboard in our web app. The user id needs to be passed from the mobile app to the web app in this interaction so that we can retrieve the user’s data in the web app. The … Continue reading Passing Data between Mobile / Web Apps
Is this eToken supported by Windows 10 natively?
I have this stick left from my former work and wanna re-use it for Windows authentication, for example. Is there a way?
Continue reading Is Aladdin eToken Pro Java 72k supported by Windows? [on hold]
We are building a few corporate apps for field workers / front office. In most cases each user will have their own device, but there are some shared devices (for example reception). The devices are going to be Android and we … Continue reading Is there any advantage in using Google’s IAM on Android?
We have implemented our own single sign-on on our internal and external applications. The flowchart looks like this:
We are using https on both the App and the Single Sign-On, and we pass values between the SSO and the App… Continue reading Is multiple redirect query string request safe?
A bug in the Electronic Arts gaming platform’s single sign-on mechanism could have allowed hackers to access game accounts. Continue reading EA Games Patches Account-Hijacking Bug
Apple’s WWDC was full of surprises including a new feature designed to make signing up for websites more private: Sign In with Apple. Continue reading Apple battles Facebook and Google with rival sign in service
The question “what is single sign-on?” is one we get asked a lot. To understand this solution, consider an analogy: “Imagine going to the mall, and at each store you must register with the store for your first purchase. Then, every time aft… Continue reading What Is Single Sign-On (SSO)?