You mean SSO? I think that's slightly disingenuous because it's still possible to be perfectly secure with username/password login. Sure, having SSO might prevent Barbra from accounting (who failed the last 3 phishing training sessions) from getting phished, but that's the company's problem, not the vendor's.
When a person leaves an organisation, it’s difficult to find all the various team accounts they have been added to in order to remove them. So you end up in a situation where people no longer in the organisation frequently still have access to anything non-SSO.
That’s a very obvious, legitimate security issue, why are you accusing people of being insincere about it?
gruez|4 months ago
JimDabell|4 months ago
That’s a very obvious, legitimate security issue, why are you accusing people of being insincere about it?