By John Gruber
WorkOS: APIs to ship SSO, SCIM, FGA, and User Management in minutes. Check out their launch week.
My thanks to 1Password — which, earlier this year, acquired frequent DF sponsor Kolide — for sponsoring last week at DF. Imagine if you went to the movies and they charged $8,000 for popcorn. Or, imagine you got on a plane and they told you that seatbelts were only available in first class. Your sense of outraged injustice would probably be something like what IT and security professionals feel when a software vendor hits them with the dreaded SSO tax — the practice of charging an outrageous premium for Single Sign-On, often by making it part of a product’s “enterprise tier”. The jump in price can be astonishing — one CRM charges over 5000% more for the tier with SSO. At those prices, only very large companies can afford to pay for SSO. But the problem is that companies of all sizes need it.
Until outraged customers can shame vendors into getting rid of the tax, many businesses have to figure out how to live without SSO. For them, the best route is likely to be a password manager, which also reduces weak and re-used credentials, and enables secure sharing across teams. And a password manager is likely a good investment anyway, for apps that aren’t integrated with SSO. To learn more about the past, present, and future of the SSO tax, read 1Password’s full blog post.
★ Monday, 2 September 2024