Configuring the SSO payload on a device

The single sign-on (SSO) payload uses Kerberos SSO and authenticates user credentials only one time to grant access to apps on a managed device.

Note: Skip this step for Android and Windows 10+ Desktops and Laptops.
MaaS360® automatically pushes an SSO payload to a managed device. The payload contains a list of apps that use single sign-on. The SSO payload also contains Kerberos realm or service information that is needed for authentication.
Single sign-on window
MaaS360 also issues an Identity Certificate to a device from the MaaS360 certificate authority (CA). The provisioned Identity Certificate is used to authenticate the device to Verify. The certificate is unique to the user and the device. SSO fails if the certificate is used on another device.
Certificate window

What to do next: Review the MaaS360 - Verify integration user experience