Single sign-on is the idea that users can replace all of the various application login prompts (authentication processes) with a single login process. Users sign on once and thereafter have free access to all their applications.

In practice, single sign-on is often difficult or impossible to achieve, due to technical, organizational or cost constraints. Consequently, a more accurate term for what gets deployed in practice is reduced sign on.

Return to Identity Management Concepts