SSO, MFA & PAM Documentation
Summary of the Use Cases for Single Sign-On (SSO), Multi-Factor Authentication (MFA) & Privileged Access Management (PAM)
We want different requirements based on our policies.
We want to have policies based on Geo-Fencing, On/Off premises, level of access and sensitivity of the data.
Policy examples
- Comply with all applicable Laws and Regulations pursuant to the business. (PCI, SOX, FERPA, etc)
- Comply with all applicable Standards pursuant to the business (NIST, ISO, ITIL, DevOps,etc.)
- Policy for High-Risk countries - Syria, North Korea and etc.
- Determine authentication methods based on Geo-Fencing location(s)
- Step-Up Authentication or Mutli-Factor Authentication (MFA) - Based on policies
- Analytics, reporting, workflow in real-time for access requests
- Analytics to determine "rogue" actions and cease session
