If you deactivate SSO and use Authentication Type > Passcode and you are deploying the Workspace ONE Intelligent Hub for Android (which uses the Workspace ONE SDK framework), the Workspace ONE Intelligent Hub for Android does not prompt the user to create a PIN for access. SSO, the Workspace ONE Intelligent Hub for Android, and Forced PINs They do not have to reenter them until the SSO session ends. Together – If you enable both Authentication Type and SSO, then users enter either their passcode or credentials (whichever you configure as the Authentication Type) once.See the section SSO, the Workspace ONE Intelligent Hub for Android, and Forced PINs for details. This productivity app does not prompt users to create a passcode or PIN. The exception to this configuration is the Workspace ONE Intelligent Hub for Android. Alone – If you enable an Authentication Type (passcode or user name/password) without SSO, then users must enter a separate passcode or credentials for each individual application.Select to require no authentication to access the application.Īuthentication Type and SSO can work together or alone. Disabled – Does not require biometric authentication systems to access the application.Enabled – Allow the use of Fingerprint, Touch ID, or Face ID for authentication to the application.Select the system used to authenticate for access. This setting is part of the Workspace ONE Require Device Passcode (RDP) feature supported by the Workspace ONE SDK. Select to require the use of the device passcode (labelled PIN in the UI) to authenticate to and access SDK-built apps and Workspace ONE productivity apps. Set the number of passcodes the Workspace ONE UEM console stores so that users cannot use recent passcodes. Set the number of days the passcode remains valid before you must change it. For example, allow characters like, and #. Set the minimum number of complex characters for the passcode. Minimum Number Of Complex Characters (if Alphanumeric is selected) Set the minimum number of characters for the passcode. Set the passcode to allow simple strings. Android - You can enter numbers and letters.iOS - You can enter numbers and letters.Select an option depending on your security needs and the platform. If SSO is deactivated, the system removes the app.If SSO is activated, the system performs an enterprise wipe.iOS – Two scenarios are possible depending on the SSO configuration.Android – The system performs an enterprise wipe on the device.Set the maximum times, a user can log in, with an incorrect passcode before the system throws an error. On newer Android applications, authentication timeout prompts for credentials when the session is inactive for the set time. Authentication TypeĮnable this option to require a local passcode requirement.ĭefine the time elapsed, ranging from the last successful authentication to the value set here, that triggers the system to prompt for Workspace ONE UEM credentials. This setting does not force the reset of the enrollment token. When enabled, the system forces the user to generate an application token through the Self-Service Portal (SSP) and does not allow user name and password. This setting controls how the system allows users to access SDK-built applications, either initially or through a forgotten-passcode procedure. SSO does not work if the profiles assigned to the Hub or the productivity app have SSO deactivated. If you have assigned a custom SDK profile to a productivity app, you must enable SSO in the custom profile. If configurations do not match, than the SDK feature does not work in your Workspace ONE productivity app.įor example, if you want managed apps to use SSO, ensure that the default SDK profile assigned to your Workspace ONE Intelligent Hub has SSO enabled. The configuration in the SDK profile assigned to the productivity app must match the configuration in the default SDK profile you assigned to your Workspace ONE Intelligent Hub. SDK Profile Configurations Must Match To Work If you do not set the Workspace ONE Intelligent Hub to use the default SDK profile, then the system does not apply your settings you configured in the Settings and Policies section. You must configure the default SDK profile with the features you want the Workspace ONE Intelligent Hub to apply to apps. The Workspace ONE Intelligent Hub works as a "broker application" for SDK features, such as SSO. Workspace ONE Intelligent Hub only supports the default profile set in either the Resources > Profiles & Baselines > SDK Profiles is a custom SDK profile. Note: You cannot use custom SDK profiles with the
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |