The invalid cost structure is labeled “SSO Tax” and CISA states that potential SMB customers “perceive SSO as more expensive due to the higher cost of a premium-tier service that includes SSO compared to a lower-tier service that does not. includes SSO with a requirement to register for a minimum number of seats that may exceed the actual number of users.”
There are two websites (sso.tax and ssotax.org) that track this situation. They list abusive software vendors on the “wall of shame” who have put SSO out of reach for the SMB market, such as Adobe, Monday.com, New Relic, Quip, and RingCentral. For example, Quip’s Starter collaboration service is priced at $10 per month per user, but the Plus tier is priced at $25 per month per user that offers the SSO feature. Monday.com, a popular backend accounting service, starts at $7 per month and goes up to $27 per month for its SSO features. “This discourages organizations from adopting an identity and access control system,” wrote Olga Livingston on the CISA blog last week. CISA recommends unbundling SSO from other premium services and including the feature in the basic pricing tier by retailers.
But cost and planning skills are just the tip of the spear. Part of the problem is that SSO requires “many moving parts,” as CISA says in its report. Often legacy applications need to be updated – some of which can be major efforts – to support SSO technology for example. “Many SMBs use outdated systems in their day-to-day operations that cannot support a modern SSO solution,” CISA wrote in its report. This development is also hampered by incorrect SSO documentation. CISA cites that “users often insist that instructions are incomplete, unclear, and often inaccurate” when it’s time for SMBs to implement their SSO solution, and recommends vendors step up their game in this area.
Source link