CISA Certified Information Systems Auditor – Question1104

Which of the following is the GREATEST risk of single sign-on?

A.
Password carelessness by one user may render the entire infrastructure vulnerable
B. Integration of single sign-on with the rest of the infrastructure is complicated
C. It is a single point of failure for an enterprise access control process
D. One administrator maintains the single sign-on solutions without segregation of duty

Correct Answer: B