Skip Navigation
  1. BlackBerry Docs
  2. BlackBerry AtHoc
  3. 7.15
  4. Manage Users
  5. Manage user authentication
  6. Enable single sign-on as an authentication method

Enable single sign-on as an authentication method

The Single Sign-On feature is not enabled by default. A system administrator must enable SSO in the Feature Enablement settings in the
BlackBerry AtHoc
 management system. For more information, see "Enable and disable features" in the
BlackBerry AtHoc
 System Administrator Configuration Guide
.
When SSO is enabled for your organization, if your users are already authenticated and signed in using your identity provider (IDP), they do not need to sign in again to access the
BlackBerry AtHoc
 management system or Self Service.
SSO is supported on the desktop app when the authentication method is set to "Defer to Self Service" and Self Service is enabled for SSO.
If a user is not signed in, they are redirected to their organization's customer IDP login when they attempt to sign in. This IDP is managed by your organization or by a third party vendor that provides IDP services. The IDP authenticates the user. The user is then redirected to
BlackBerry AtHoc
. If the user is already signed in to the IDP they are automatically redirected to the
BlackBerry AtHoc
 management system or Self Service with an active session.
You must have organization administrator, enterprise administrator, or system administrator permissions to enable single sign-on as a user authentication method.
  1. Log in to the
    BlackBerry AtHoc
     management system as an administrator.
  2. In the navigation bar, click Settings icon.
  3. In the
    Users
     section, click
    User Authentication
    .
  4. On the
    User Authentication
     window, in the
    Enabled Authentication Methods
     section, select the Single Sign-On (SSO)
    Enable
     check box.
  5. Click
    Save
    .