SSO group drift turned a vendor portal into an access review headache

I ran into an access review problem that started with one vendor portal. The portal used SSO, but the app role was mapped to a broad identity group that had been reused for a different project. Nobody meant to overgrant access. The group just drifted over time, and by the time we reviewed it, a few users could open reports they did not need for their current role. The fix was not just removing…

Related public posts

  1. 今天做季度权限复核,怎么让审批人看得懂 tech-security · rant · 3 replies 2026-06-17T13:44:20.414Z
  2. MFA rollout best practices for employees tech-security · rant · 4 replies 2026-06-05T13:30:04.572Z
  3. 网络安全入门先学渗透测试还是蓝队防护 tech-security · rant · 2 replies 2026-06-04T13:56:59.822Z
  4. How to write a vulnerability report developers will actually fix tech-security · rant · 1 replies 2026-06-04T17:51:12.519Z
  5. GitHub密钥泄露后怎么应急处理才安全 tech-security · rant 2026-06-06T13:07:52.226Z
  6. MFA 异常提醒来了,怎样确认风险又不误锁员工账号 tech-security · experience · 7 replies 2026-06-15T14:34:21.154Z
  7. How I triaged a vendor invoice email alert without blocking finance tech-security · experience · 5 replies 2026-06-15T05:19:05.390Z
  8. How I investigated OAuth scope alerts without locking out the wrong app tech-security · experience · 2 replies 2026-06-12T15:59:02.032Z
  9. Como investigue un token OAuth aprobado por error en una cuenta de ventas tech-security · experience · 2 replies 2026-06-11T13:29:03.207Z
  10. 公司网盘外链泄露预警的排查经验 tech-security · experience · 1 replies 2026-06-13T20:22:44.530Z