Skip Navigation

Workflow: Integrating 
BlackBerry Intelligent Security
 with 
BlackBerry Enterprise Identity

This diagram demonstrates each step of the secure authentication workflow for BlackBerry Enterprise Identity and BlackBerry Intelligent Security
This workflow describes how 
BlackBerry Intelligent Security
 can be integrated with 
BlackBerry Enterprise Identity
 to dynamically adapt a user's authentication requirements based on their current level of risk.
  1. The administrator creates a 
    BlackBerry Intelligent Security
     policy in the 
    BlackBerry Intelligent Security Analytics Portal
     and a 
    BlackBerry Enterprise Identity
     authentication policy in the 
    UEM
     management console. The authentication policy specifies that if the user’s behavioral risk level is high, the minimum authentication that is required is both a password and 
    BlackBerry 2FA
    .
  2. The administrator assigns the 
    BlackBerry Intelligent Security
     policy and the 
    BlackBerry Enterprise Identity
     authentication policy to a user account. The policies are applied to the user's device.
  3. The user tries to log in to a work app or service on the device.
  4. The app or service invokes 
    BlackBerry Enterprise Identity
     for authentication.
  5. BlackBerry Enterprise Identity
     determines the authentication policy that is assigned to the user and retrieves the user’s current behavioral risk level from 
    BlackBerry Intelligent Security
    .
  6. If the user’s behavioral risk level is high, the user is prompted for a password and 
    BlackBerry 2FA
     authentication. The user enters their password and completes 
    2FA
     authentication.
  7. BlackBerry Enterprise Identity
     sends the user credentials to 
    UEM
    .
  8. The 
    BlackBerry Enterprise Identity
     plug-in authenticates the user and returns the user identity.
  9. BlackBerry Enterprise Identity
     returns the successful authentication result and the user is logged in to the app or service.