An organization finds that most help desk calls are regarding account lockout due to a variety of applications running on different systems.
Management is looking for a solution to reduce the number of account lockouts while improving security.
Which of the following is the BEST solution for this organization?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
The best solution for the organization to reduce account lockouts while improving security is to implement Single Sign-On (SSO), which is option C.
Here's why:
Creating Multiple Application Accounts for Each User (Option A): This option is not a practical solution as it may lead to increased complexity, and management overhead. Each user having multiple accounts for different applications will lead to increased administrative workloads, which may lead to errors, and potentially worse security issues. Moreover, the possibility of the user choosing the same password across different accounts increases the risk of credential stuffing and other similar attacks.
Providing Secure Tokens (Option B): Secure tokens are hardware or software-based devices that are used to authenticate a user's identity. However, while secure tokens may be an effective solution for authentication, they don't solve the problem of account lockouts. They also can be expensive to implement and manage.
Implementing Role-based Access Control (Option D): Role-based access control (RBAC) is a security model that restricts access based on the roles of individual users. While RBAC can be an effective security measure, it does not directly address the issue of account lockouts. RBAC might reduce the frequency of account lockouts in the future, but it will not reduce the number of existing account lockouts.
Implementing Single Sign-On (Option C): Single Sign-On (SSO) is a solution that allows users to log in once and access all of the authorized applications without the need to enter their credentials every time. SSO helps to reduce the number of password-related issues, such as forgotten passwords, account lockouts, and even weak passwords. By implementing SSO, the organization can reduce the number of help desk calls related to account lockouts while also improving security. With SSO, users only need to remember one set of credentials, which reduces the likelihood of forgotten passwords, and they can be managed more securely as well.
Therefore, implementing SSO is the best solution for the organization to reduce account lockouts while improving security.