Skip to main content

Strengthen IT Security With Cloud SSO

IT security for ERP through the Cloud and SSO

Why do you need Cloud SSO? Earlier this year, a malware attack called NotPetya hit multinational companies Maersk, FedEx, and Merck resulting in disrupted supply chains and confirmed losses approaching $1 billion dollars (USD). One reason for the severity of the attack was that these companies conducted company business on poorly protected PCs that were directly connected across office networks.

Cloud hosting with SSO offers protection from malware attacks like NotPetya by controlling network access between machines, enabling rapid restoration from backups, and any other strong security features. For this reason the cloud has become the default hosting option for security minded companies.

For a determined hacker, a single employee password may prove sufficient to bring down a corporate network or abscond with millions of dollars

One way in which the cloud particularly excels is by protecting the way that employees login to business systems. Consider how many people follow poor password practices. One employee may re-use the same password across dozens of websites, another employee uses their dog’s name, while a third keeps their passwords taped to their monitor. By such means are passwords easily stolen and used for nefarious purposes or traded on the dark webs. For a determined hacker, a single employee password may prove sufficient to bring down a corporate network or abscond with millions of dollars.

How Single Sign-On Reduces Exposure

Fortunately there is a superb cloud component that reduces exposure to stolen employee login credentials. This component is called Single Sign-On (SSO) and it unifies the process of employee access to business systems. Administrators are given a powerful interface to protect corporate systems while employees are provided with a safe and easy way to login from anywhere. By using SSO, an employee can log into their email on their phone, their accounting software on their PC, and their ERP software on their home computer -- all with only one set of login credentials.

Cloud SSO is a strong secutity solution

For security teams and administrators, single sign-on is the solution of choice due to its robust protections and simplified management. By channeling all authentication requests through a single login system, strong security layers are easily added. Rules for long and complex passwords are set at the company level and enforced universally. Algorithms for automatically blocking suspicious access attempts are associated with device profiles and geolocation.

Perhaps most importantly, login access can be quickly revoked. If an employee loses control of their password, a security staff person can reset their password across all systems to block potential intruders. Similarly, when an employee leaves the company or a contractor completes an engagement, their access is immediately shut off.

When we speak with abas customers, we often hear questions about how they can protect themselves from a security standpoint. Many of them find that our SSO product can boost their security posture considerably while being a very good value proposition.

Single sign-on also provides the basis for one of the most critical items on the security must-have list. Multi-factor authentication (MFA) allows employees to authenticate themselves with something stronger than their username and password. MFA generally requires use of an authentication code sent by text message or generated through a mobile app but it can utilize other forms of electronic identification such as biometrics. Once a company adds MFA protection, a stolen password on its own becomes useless to a hacker.

Another core tenet for good security is the logging of login attempts. Comprehensive logs will capture data on user actions, IP addresses, geolocation, device profiles, and which systems were accessed. Security algorithms can analyze these logs in real-time to generate notifications of suspicious access attempts or to automatically block accounts based on activity. Another benefit of logs occur post-attack when forensics teams investigate how attackers infiltrated the system, what systems and data they touched, and what protections might prevent similar attacks in the future.

For security personnel and administrators, an SSO system can greatly increase efficiencies. Administrators can at a glance see which users have access to which systems. With a few clicks, they can create a new user in a predefined role that restricts the business systems the user can access. Dashboards and reports fill in the picture about security health and what areas need attention.

abas ERP provides security through SCloud SSO

For companies who need to operate under regulatory requirements, such as PCI for credit card transactions or HIPAA for healthcare, an SSO system can assist greatly with compliance. Many SSO features such as MFA, password rules, and logging are requirements for most regulatory security frameworks. Additionally, the centralized nature of SSO means that compliance work only needs to occur within a single system instead of fragmented across numerous business systems.

Installing a new Cloud SSO system can appear seamless for employees. Many SSO implementations are designed around an existing corporate directory such as Active Directory and utilize the same employee data and credentials. The SSO system extends the current employee directory data so that it can be accessed under a strong security framework by any business system. Training for employees migrating to the new SSO might be as simple as linking to a login screen with instructions about security improvements and how to access from different devices.

SSO systems are designed to be extensible.  When a new business application is installed for company use, it’s generally a straightforward process of adding a connector to the SSO system. Most SSO systems offer a large list of third-party software connectors along with a set of tools and interfaces for building custom connectors as necessary.

abas SSO is designed for use across any business website and application, including both abas software as well as third-party software


abas ERP and Cloud SSO

An increasing number of abas customers are taking advantage of Cloud SSO to better secure their corporate infrastructure. abas SSO is offered as part of the abas product line in partnership with security industry leader Auth0. According to abas USA VP Nicolas Dormont, "When we speak with abas customers, we often hear questions about how they can protect themselves from a security standpoint. Many of them find that our SSO product can boost their security posture considerably while being a very good value proposition."

abas Cloud SSO is designed for use across any business website and application, including both abas software as well as third-party software. It includes innovative features like password-less accounts that utilizes fingerprints and email/text links to make the login process easier and thus reduce poor password practices. Ongoing password monitoring occurs via a database of exposed passwords from previous breaches that can immediately flag users who attempt to re-use a former password. And with easy tools for embedding, abas SSO can be added into existing websites, mobile apps, and business applications.

With clear benefits for both security administrators and employees, SSO is one of the best examples of the secure cloud.

Want to know more about Cloud SSO and abas ERP in the Cloud? Download our Cloud ERP White Paper or read our post, 8 Ways Cloud ERP Makes Your Manufacturing Business More Competitive

 
703-444-2500
+43 1 319 15 19
+49 721 96 72 30
703-444-2500
+38 061 21 37 855
+420 241 931 544
+31 (0)85 3033 555
+421 903 717 980
+55 - 11 5054 - 5500
+852-2793-3317
+91 77559 04373
+62 (21) 293 19 366
+603-56124999
++94 76 666 9070
+66 81 6297375
+359 2 423 61 56

Contact

Your consent can be withdrawn at any time by sending an email to [email protected] . We assure you that we will treat this information as strictly confidential and that it will be used by abas Software AG and abas partners only (privacy policy).

North American Headquarters

703-444-2500
abas USA
45999 Center Oak Plaza
Suite 150
Sterling, VA20166

North American Headquarters

703-444-2500
abas USA
45999 Center Oak Plaza
Suite 150
Sterling, VA20166

Infocom Ltd.

+38 061 21 37 855
bul. t. Shevchenko, 56
Zaporozheye
69001

amotIQ sro

+420 241 931 544
Belnická 603
252 42 Jesenice u Prahy

ABAS Business Solutions Nederland BV

+31 (0)85 3033 555
abas Netherlands
Beilerstraat 24
9401 PL Assen

amotIQ sro

+421 903 717 980
amotIQ sro
Palarikova 36
900 28 Ivanka pri Dunaji

SHP Informática Ltda

+55 - 11 5054 - 5500
SHP Informática Ltda
Alameda dos Jurupis, 452, 7°andar - Conjunto 73/74
Sao Paulo - SP 04088-001

abas Business Solutions Limited

+852- 2793-3317
abas Hong Kong
1621, New Tech Plaza
34 Tai Yau Street
Hong Kong

abas Force India Pvt. Ltd.

+91-77559-04373
abas India
303, Aspiro Complex, Opp. Thyssenkrupp,
Pimpri Stn. Road, Pimpri,
Pune 411018

PT. abas Information Systems

+62 (21) 293 19 366
abas Indonesia
11620 Taman Aries, Jakarta barat Jakarta
Grand Aries Niaga G1-2H

Synchro RKK Sdn Bhd

+603-56124999
abas Malaysia
Sunway Geo Avenue,
Jalan Lagoon Selatan
Sunway South Quay,
Bandar Sunway
Subang Jaya Selangor 47500

Providence Global Pvt Limited

+94 770415387
Providence Global Pvt Limited
752/1
Dr De Silva Mawatha
Colombo 09

Wisdom Information Systems

+66-29340451/52/53
Wisdom Information Systems
208/5 Ladprao Soi 126
Bangkok 10310

abas Бизнес Сълюшънс България ООД

+359 2 423 61 56
abas Бизнес Сълюшънс България ООД
жк. Младост 1А, бл.553А, офис 1
1729 София