IDP Sync Attack: Secure Your Groups & Use IDs! #shorts

Name: IDP Sync Attack: Secure Your Groups & Use IDs! #shorts
Uploaded: 2026-04-13
Duration: 31 s
Description: Prevent IDP sync attacks by auditing admin groups. Configure your SO to use group IDs instead of names for enhanced security. Fix applications relying on group names. #IDPSecurity #SAML #GroupManagement #Cybersecurity

BSides Frankfurt0:3179 viewsPublished 2026-04Watch on YouTube ↗

About this talk

Prevent IDP sync attacks by auditing admin groups. Configure your SO to use group IDs instead of names for enhanced security. Fix applications relying on group names. #IDPSecurity #SAML #GroupManagement #Cybersecurity

Show transcript [en]

For your IDP sync attack, um audit your groups, reserve any groups that are existing that belong to the admins, things of that nature. Uh if possible, configure your SSO to use the group ID instead of the group name. It really, really should That's the core like SAML is designed like you should be using the ID, but they don't. There are applications out there internally developed and externally developed where they base it on the name. So, you kind of have to go through that manually and fix those.

IDP Sync Attack: Secure Your Groups & Use IDs! #shorts

Related talks