|
|
|
|
|
|
by ArchOversight
721 days ago
|
|
|
The SMB is the customer, they should already have a single place for all their users and for authentication. SSO doesn't have to be Google, Azure, Okta, PingFederate, you can run a stand-alone instance of Keycloak for instance and have OIDC and SAML available to provide SSO functionality. |
|
|
I'm fond of saying "Everything is easy, when you know how to do it", but getting these security details absolutely right isn't entry-level.