Which of the following describes the major disadvantage of many Single Sign-On (SSO) implementations?
A.
Once an individual obtains access to the system through the initial log-on, they have access to all resources
within the environment that the account has access to.
B.
The initial logon process is cumbersome to discourage potential intruders.
C.
Once a user obtains access to the system through the initial log-on, they only need to logon to some
applications.
D.
Once a user obtains access to the system through the initial log-on, he has to logout from all other systems
Explanation:
A security issue to consider in an SSO environment is that If an attacker uncovers a credential set, the attacker
would have access to every resource within the environment that the compromised account has access to.Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, pp. 207, 2078