policy name: organization_not_using_single_sign_on
severity: MEDIUM
It is recommended to enable access to an organization via SAML single sign-on (SSO) by authenticating through an identity provider (IdP). This allows for central account control and for timely access revocations.
Not using an SSO solution makes it more difficult to track a potentially compromised user’s actions accross different systems, prevents the organization from defining a common password policy, and makes it challenging to audit different aspects of the user’s behavior.