CISSP 89: Identity management implementation (CISSP IT-Tutorial)

#CISSP
#IdentityandAccessManagement
#Identitymanagementimplementation
Centralized access control authorization verification is performed by a single entity within a system.
A small team or individual can manage centralized access control.In centralized access control administrative overhead is lower because all changes are made in a single location, and a single change affects the entire system.Single Sign-On (SSO) is a centralized access control technique that allows a user to be authenticated only once on a system and to access multiple resources without authenticating again.For example, users can authenticate once on a network and then access resources throughout the network without being prompted to authenticate again.The main advantage of Single Sign-On (SSO) is simplifies the process of gaining access to multiple systems for everyone.
Decentralized access control are various entities located throughout a system perform authorization verification.Decentralized access control requires several teams or multiple entities.
In decentralized access control administrative costis higher because changes must be implemented across several locations.The most difficult task is to maintain the different number of access control points.