Organizations, regardless of size and industry, give varying degrees of access and rights to their employees depending on their position, title, job code or any other role that there may be. This is so that the employee can access the many systems and applications they need in order to perform their job. Manually logging into each application can be a chore though, as you may know. It is then exacerbated when there are more than a handful of app’s with password complexity requirements enforced from the company.
As you have probably heard Single Sign On allows a user to easily log in with a single set of credentials and thereafter be automatically authenticated to any of your applications.
Another major issue though is when the employee goes on vacation or is going to be out of the office. How do they allow someone to access their applications in order to perform tasks while they are away?
Credential delegation can be added to an SSO solution to enable users to delegate their credentials to another employee so that they are may act on their behalf. Credential delegation is beneficial for a number of reasons. Once the users are allocated to their permission groups, they are behind the firewall so they never have to know the enterprise credentials they are being delegated in order to have access to the applications. Another benefit is that there can be a time frame set for the access allowance. So, for example if a manager is going away and needs an employee to perform tasks on their behalf they can delegate access for a certain period of time. After that time, access will be automatically revoked.
User credential delegation and single sign-on are the pillars necessary in order to take the necessary steps to secure the network, while also allowing for efficiency.