CISA Certified Information Systems Auditor – Question1004

The IS security group is planning to implement single sign-on. What is the IS auditor's PRIMARY concern?

A.
Integrated access rules will increase users' access privileges.
B. Managing user IDs/passwords will require increased efforts.
C. Integrated access rules will restrict users' access privileges.
D. Compromise of a user ID/password will yield more privileges.

Correct Answer: D