Don't think that SSO is a magic solution for all of this. I'd say SSO won't work with any of it. SSO will work for new integrations but typically a team and team members will need passwords or API keys or tokens (all of these are strings, in effect passwords), and for that, beyond SSO, I have used and can recommend, for many teams in large organisations:
- A secrets manager (e.g. AWS Secrets manager) with an API key for each team, and the team can access their secrets on a team level there
- An encrypted file encrypted with e.g. KeePass, and one password for that
- Bitwarden or Lastpass on a team or department level (yes, shared passwords, for example where there is one password for one proxy)
- A secrets manager (e.g. AWS Secrets manager) with an API key for each team, and the team can access their secrets on a team level there
- An encrypted file encrypted with e.g. KeePass, and one password for that
- Bitwarden or Lastpass on a team or department level (yes, shared passwords, for example where there is one password for one proxy)
- Yopass https://yopass.se/