my parent corp is big on okta and sso including vpn.
in my division we’ve got gmail, windows ad sone old ldap linux and aws stuff.
me, i’m paranoid about having an account for email get compromised and boom you got vpn ssh etc. it seems to me sso puts never use the same password idea out the window.
plus with these web sso ir seems the danger of phishing is way higher even with 2fa.
opinions?
in my division we’ve got gmail, windows ad sone old ldap linux and aws stuff.
me, i’m paranoid about having an account for email get compromised and boom you got vpn ssh etc. it seems to me sso puts never use the same password idea out the window.
plus with these web sso ir seems the danger of phishing is way higher even with 2fa.
opinions?