Presentation is loading. Please wait.

Presentation is loading. Please wait.

Single Sign-on Integration (SSI) MSIT 458 – Information Security Project Part 2 Prepared for Professor Yan Chen Prepared by Team Triad Radu Bulgaru Moniza.

Published byLaurence Rogers Modified over 9 years ago

Similar presentations

Presentation on theme: "Single Sign-on Integration (SSI) MSIT 458 – Information Security Project Part 2 Prepared for Professor Yan Chen Prepared by Team Triad Radu Bulgaru Moniza."— Presentation transcript:

1 Single Sign-on Integration (SSI) MSIT 458 – Information Security Project Part 2 Prepared for Professor Yan Chen Prepared by Team Triad Radu Bulgaru Moniza Shaikh Naveed Asem 10/14/2012 1

2 Problem - Lack of Single Sign-On Integration (SSI) is wide-spread across companies in all major industries Cause  Lack of understanding security architecture  Lack of understanding implementation options  Lack of enterprise IT governance Effect  Fail to follow enterprise security standards  Wasted infrastructure resources  Major security risk; Prone to authenticity attacks General Problem – Lack of SSI 2

3 SSI Problem in Our Company 3  Our company has HR app with sensitive data  salary, age, performance reviews, etc  HR app lacks Single Sign-on Integration  HR app utilizes non-standard authentication  Before exposing HR app to internet, SSI needs to be implemented to provide better security

4 Current System Architecture 4 The current HR web application…  …is an intranet application  …is a reporting front-end  …is not a custom application  …is generated through Microsoft SSRS  …has sensitive data  …has a dynamic user base  …uses SSRS “native mode” that relies on windows authentication

5 Problem Statement 5 Problem Statement:  Enterprise authentication policies not enforced  Authenticated users are re-authenticated  Users spend more time logging in  Users have to remember additional password  Not leveraging Organization hierarchies  Lack of security infrastructure (high- availability, disaster recovery, etc.) for user authentication

6 Options to Solve SSI Problem 6 Option 1 – SharePoint Integration  Integrate HR app into enterprise SharePoint Farm  May also deploy reports as SharePoint web parts only Option 2 – Active Directory  Use AD for authentication  AD already configured for LDAP, Kerberos, DNS  ADFS provides SSO Option 3 – SharePoint & AD  Combination of option 1 and option 2

7 Feedback Request Team Triad – Slide # 7 Improvement Ideas? Additional Options for Part 3? Thank you, Team Triad Radu + Moniza + Naveed

Download ppt "Single Sign-on Integration (SSI) MSIT 458 – Information Security Project Part 2 Prepared for Professor Yan Chen Prepared by Team Triad Radu Bulgaru Moniza."

Similar presentations

Single Sign-on Integration (SSI)

Single Sign-on Integration (SSI)
SINGLE SIGN-ON. Definition - SSO Single sign-on (SSO) is a session/user authentication process that permits a user to enter one name and password in order.

SINGLE SIGN-ON. Definition - SSO Single sign-on (SSO) is a session/user authentication process that permits a user to enter one name and password in order.
Secure Lync mobile Authentication

Secure Lync mobile Authentication
Secure SharePoint mobile connectivity

Secure SharePoint mobile connectivity
Dan Usher Joel Ward. Who we are… What we’ve seen… Security Concerns in today’s world Why SmartCards? Authentication & Authorization of SharePoint IIS.

Dan Usher Joel Ward. Who we are… What we’ve seen… Security Concerns in today’s world Why SmartCards? Authentication & Authorization of SharePoint IIS.
Introducing Windows Server 2012 R2 Work Folders:

Introducing Windows Server 2012 R2 Work Folders:
Insight Consulting Siemens Identity Management Survey Conducted April – June 2007 Info

Insight Consulting Siemens Identity Management Survey Conducted April – June 2007 Info
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
Problem Statement AD DB App1 DB App2 AD App4 App6 AD App5 Intranet Extranet Cloud AD App3 DB SSO Separate Sign-in Separate Sign-in Separate Sign-in.

Problem Statement AD DB App1 DB App2 AD App4 App6 AD App5 Intranet Extranet Cloud AD App3 DB SSO Separate Sign-in Separate Sign-in Separate Sign-in.
CS795/895.NET Passport1. NET PASSPORT &TRUSTBRIDGE SHRIPAD PATIL CS795/895 SECURITY IN DISTRIBUTED SYSTEMS.

CS795/895.NET Passport1. NET PASSPORT &TRUSTBRIDGE SHRIPAD PATIL CS795/895 SECURITY IN DISTRIBUTED SYSTEMS.
Teamcenter™ Security Services SSO

Teamcenter™ Security Services SSO
Sessions about to start – Get your rig on!. Notes from the field – Implement Hybrid Search and OneDrive for Business Chris Zhong - Microsoft Aaron Dinnage.

Sessions about to start – Get your rig on!. Notes from the field – Implement Hybrid Search and OneDrive for Business Chris Zhong - Microsoft Aaron Dinnage.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Enterprise Single Sign On Identity management for web applications.

Enterprise Single Sign On Identity management for web applications.
© 2004-2014. Centrify Corporation. All Rights Reserved. Unified Identity Management across Data Center, Cloud and Mobile.

© Centrify Corporation. All Rights Reserved. Unified Identity Management across Data Center, Cloud and Mobile.
Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.

Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.
Supporting Infrastructure (AD, Certs, DNS, WSUS) Monitoring (SCOM, Other, Custom) Remote Desktop Gateway Dev/StageProduction CI & Deployment.

Supporting Infrastructure (AD, Certs, DNS, WSUS) Monitoring (SCOM, Other, Custom) Remote Desktop Gateway Dev/StageProduction CI & Deployment.
May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.

May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.
Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd

Edwin Sarmiento Microsoft MVP – Windows Server System Senior Systems Engineer/Database Administrator Fujitsu Asia Pte Ltd
August 25, 20151 SSO with Microsoft Active Directory Presented by: Craig Larrabee.

August 25, SSO with Microsoft Active Directory Presented by: Craig Larrabee.

Similar presentations

Ads by Google