Skip Navigation

Configuring console login options

You can configure how administrators and users authenticate with the
BlackBerry UEM
consoles, including the required password complexity, login notices, and session timeout limits.
You can allow administrators and users to log in using the following authentication methods:
Authentication option
Description
Local password-based authentication
Local administrators and users can authenticate with a username and password.
Directory-based authentication
If you connect
BlackBerry UEM
to your company directory, administrators and users can log in using their directory credentials. For more information, see Connecting to your company directories in the Configuration content.
Single sign-on
If you connect
UEM
to
Microsoft Active Directory
in an on-premises environment, you can configure single sign-on authentication to permit administrators or users to bypass the login webpage and access the management console or
BlackBerry UEM Self-Service
directly. A password or certificate is not required to log in. See Configure single sign-on for BlackBerry UEM.
This feature is not supported by
UEM Cloud
.
Certificate-based authentication
You can set up certificate-based authentication so that administrators and users can log in using an authentication certificate. See Configure certificate-based console authentication.
This feature is not supported by
UEM Cloud
.
BlackBerry 2FA
authentication
You can set up
BlackBerry 2FA
authentication so that administrators and users can log in using two-factor authentication. For more information, see KB 73371.
This feature is not supported in an on-premises environment.
BlackBerry Online Account
authentication
You can set up
BlackBerry Online Account
authentication so that administrators can log in using their
BlackBerry Online Account
credentials.
This feature is not supported in an on-premises environment.