I have recently seen a lot of Saas/Micro-Saas offering SSO which leaves me wondering if it is common in the industry.
Does your organization use one?
Builders, do you spin up your own infra for SSO (keycloak, etc) or you use some serivce like Auth0 etc?
Her are my two cents.<p>For all type and size of the businesses, having an IAM governance is important. This way password policies can be set up and enforced.<p>When the SaaS landscape starts growing, this governance becomes more important and mission critical. The attack surface of the business expands with the number of passwords needed to manage by the employees.<p>In the above picture SSO brings significant relief to IT and Finance managers with less management hassle and reduced risk scores on the business side.<p>For the employees, SSO integrations gives more streamlined and smooth experience.
It isn't that SSO is important because of your application - it is important because of your audience -- B2C apps don't need SSO. B2B apps probably do.
I think this blog explained why in details: <a href="https://blog.logto.io/sso-is-better/" rel="nofollow">https://blog.logto.io/sso-is-better/</a>