Skip Navigation

Enable single sign-on as an authentication method

The Single Sign-On feature is not enabled by default. A System Administrator must enable SSO in the Feature Enablement settings in the BlackBerry® AtHoc® management system. For more information, see "Enable and disable features" in the
BlackBerry AtHoc
System Settings and Configuration
When SSO is enabled for your organization, if your users are already authenticated and signed in using your identity provider (IDP), they do not need to sign in again to access the
BlackBerry AtHoc
management system or Self Service.
BlackBerry AtHoc
supports SAML (Security Assertion Markup Language) version 2.0.
SSO is supported on the desktop app when the authentication method is set to "Defer to Self Service" and Self Service is enabled for SSO.
If a user is not signed in, they are redirected to their organization's customer IDP login when they attempt to sign in. This IDP is managed by your organization or by a third party vendor that provides IDP services. The IDP authenticates the user. The user is then redirected to
BlackBerry AtHoc
. If the user is already signed in to the IDP, they are automatically redirected to the
BlackBerry AtHoc
management system or Self Service with an active session.
You must be an Organization Administrator, Enterprise Administrator, or System Administrator to enable single sign-on as a user authentication method.
  1. Log in to the
    BlackBerry AtHoc
    management system as an administrator.
  2. In the navigation bar, click Settings icon.
  3. In the
    section, click
    User Authentication
  4. On the
    User Authentication
    window, in the
    Enabled Authentication Methods
    section, select the Single Sign-On (SSO)
    check box.
  5. Click