Over the last while, I've had the chance to dive into SSO configuration. Turns out, like many powerful tools, Single Sign-On can be used for LOTS of applications. This means if you're going to use it, you need to:

• Figure out what your goals are before you start
• Understand what your vendor / service provider, who offers SSO integration, actually can do for you
• Finally, and most crucially, once you think you understand the first two points, ask lots of weird questions to make sure!

I gave a talk at Elbsides light 2023. It was super fun to hang out with the hacker community, and folks said such nice things about my talk! A++ would attend again.