Enable single sign-on as an authentication method
The Single Sign-On feature is not enabled by default. A system administrator must enable SSO in the Feature Enablement settings in the BlackBerry® AtHoc® management system. For more information, see "Enable and disable features" in the
BlackBerry AtHocSystem Settings and Configuration
When SSO is enabled for your organization, if your users are already authenticated and signed in using your identity provider (IDP), they do not need to sign in again to access the
BlackBerry AtHocmanagement system or Self Service.
SSO is supported on the desktop app when the authentication method is set to "Defer to Self Service" and Self Service is enabled for SSO.
If a user is not signed in, they are redirected to their organization's customer IDP login when they attempt to sign in. This IDP is managed by your organization or by a third party vendor that provides IDP services. The IDP authenticates the user. The user is then redirected to
BlackBerry AtHoc. If the user is already signed in to the IDP they are automatically redirected to the
BlackBerry AtHocmanagement system or Self Service with an active session.
You must have organization administrator, enterprise administrator, or system administrator permissions to enable single sign-on as a user authentication method.
- Log in to theBlackBerry AtHocmanagement system as an administrator.
- In the navigation bar, click .
- In theUserssection, clickUser Authentication.
- On theUser Authenticationwindow, in theEnabled Authentication Methodssection, select the Single Sign-On (SSO)Enablecheck box.