Configuring SSO Login for iOS

Introduction

Single Sign-On (SSO) technology enables users to log in once and seamlessly access various applications. Especially for iOS devices, the integration of Microsoft SSO offers an efficient solution for combining user-friendliness and security. It not only simplifies everyday work through simplified logins, but also reduces security risks and IT effort. This guide serves as the basis for an SSO configuration with iOS and Microsoft SSO.

Requirements

Two configurations and one app are required for this in Relution.

  • App Compliance
  • Extensible Single Sign-On
  • VPP App Microsoft Authenticator

App Compliance Configuration

The Microsoft Authenticator app must be added to the list of required apps. This includes the extension com.microsoft.azureauthenticator.ssoextension required for Microsoft SSO.

Extensible Single Sign-On Configuration

The following configuration points can be used as a minimally functional template for Microsoft SSO. Points not mentioned can be left as default. The final configuration must be adapted accordingly to your own environment.

  • Extension Identifier

    • com.microsoft.azureauthenticator.ssoextension
  • Type

    • Redirect
  • URLs

    • https://login.microsoftonline.us
    • https://login.microsoftonline.com
    • https://login-us.microsoftonline.com
    • https://login.microsoft.com
    • https://login.partner.microsoftonline.cn
    • https://sts.windows.net

User Interaction

Once configured and assigned to the devices, users can now log in to a Microsoft service in the browser, such as Outlook, or a Microsoft app, such as Teams, and will be automatically logged in to all other compatible apps.