Decision Point for Reduced Sign-On

Archived Published: 09 July 2012 ID: G00235088

Analyst(s): | |

Not a Gartner Client?

Want more research like this?
Learn the benefits of becoming a Gartner client.

contact us online


Users complain, rightly, that they are faced with too many sign-on challenges as they go about their daily work routines. Architects attempting to address this problem may feel a little like the Greek mythological character Sisyphus. To help organizations get rolling in the right direction, this "Reduced Sign-On" Decision Point provides guidance for how to implement the many alternatives available to simplify the user environment. *The secondary authors listed above have been included for attribution purposes only. They were the original authors of this content, but were not involved in the latest update. As they are no longer employed at Gartner, please contact the lead author if you have questions.

Table of Contents

  • Decision Point
  • Typical Requirements
    • Convenience vs. Risk Aggregation: Simplified, Reduced, or Single Sign-On
    • Managing Authentication Across Identity and Policy Domains
    • Increase Productivity
    • Reduce IT Costs
    • Develop RSO Strategy for All Constituencies
    • Provide Integration Point for Stronger Authentication
    • Enable Policy-Based Authentication
  • Alternatives
    • Password Management
    • E-SSO
    • Web SSO
    • Federation
    • Central LDAP Authentication
    • Extending NOS Login
  • Future Developments
    • Expanded Use of Federation
    • GINA Module Goes Away in Windows Vista
    • Broader Adoption of Web Services Applications
  • Evaluation Criteria
  • Statement & Basis for Position
    • Policy Considerations Position
      • Implement RSO.
      • Don't utilize RSO techniques.
    • Password Management Position
      • Consider password-management tools as a tactical step.
      • Do not reduce sign-on or use password management.
      • Seek to leverage RSO approaches.
    • RSO for Heterogeneous Applications Position
      • Use WAM solutions.
      • Use WAM or centralized LDAP authentication service.
      • Use E-SSO or centralized LDAP authentication service.
    • Extending Network Domain Login Position
      • Use the NOS authentication and session mechanisms for RSO.
      • Do not use the NOS directory for RSO.
    • Federation Protocols Position
      • Use federation.
      • Use any mechanisms that are suitable to the domain.
  • Relationship to Other Components
© 2012 Gartner, Inc. and/or its Affiliates. All Rights Reserved. Reproduction and distribution of this publication in any form without prior written permission is forbidden. The information contained herein has been obtained from sources believed to be reliable. Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartners research may discuss legal issues related to the information technology business, Gartner does not provide legal advice or services and its research should not be construed or used as such. Gartner shall have no liability for errors, omissions or inadequacies in the information contained herein or for interpretations thereof. The opinions expressed herein are subject to change without notice.

Free Research

Discover what 12,000 CIOs and Senior IT leaders already know.

Free Access

Why Gartner

Gartner delivers the technology-related insight you need to make the right decisions, every day.

Find out more

Call +1 800 213 4848 or contact us

to become a Gartner client.