Home
Using the Console
This section provides information about using the SOTI MobiControl console to perform the various management tasks.
Managing Devices
Sharing Devices
Configuring Imprivata MDA as App Authenticator
This procedure describes how to use Imprivata MDA as your app authenticator.

Welcome to SOTI MobiControl 2024.0 Help
SOTI MobiControl is an enterprise mobile management solution dedicated to helping you manage your enterprise devices. Use SOTI MobiControl Help to learn about all the features available through SOTI MobiControl.
What's New in SOTI MobiControl Help
Setting Up SOTI MobiControl
This section provides instructions for installing, activating, and upgrading SOTI MobiControl instances.
Using the Console
This section provides information about using the SOTI MobiControl console to perform the various management tasks.
- About the SOTI MobiControl Console
- Managing Users
- Managing Devices
  - Managing Android Enrollment Policies
  - Managing Device Enrollment Rules
  - Enrolling Devices
  - Renaming Devices
  - Device Compliance Policies
  - Viewing Device Information
  - Grouping Devices
  - Updating Devices
  - Using Signal Policies to Monitor Devices, Location Zones, and Servers
  - Sending Messages to Devices
  - Sharing Devices
    - Configuring Shared Device
    - Configuring Imprivata MDA as App Authenticator
      This procedure describes how to use Imprivata MDA as your app authenticator.
    - Logging into Android Plus Shared Devices
    - Logging into iOS Shared Devices
    - Logging Out Shared Devices
    - Shared iPad for Business
    - Troubleshooting Shared Devices
    - Shared Device Error States
    - Single Sign-On (SSO) For Shared Devices Using Microsoft Authenticator
      You can use Microsoft Authenticator for single sign-on (SSO) to applications supporting Microsoft Authentication Library (MSAL) on shared devices.
  - Using SHA-1 and SHA-2 Certificates on the Same Deployment Server
  - Removing Devices
- Managing Configurations
- Managing Applications
- Managing Data
- Monitoring Devices
- Troubleshooting Device Issues
- Generating Reports
- Managing System Settings
- Other Features
- SOTI MobiControl Console Reference
System Health
View vital system stats in a variety of interactive, up-to-date charts and tables.
SOTI MobiControl Administration
This section provides information about how to perform various administrative tasks related to SOTI MobiControl. These tasks include monitoring your SOTI MobiControl system, changing deployment settings, integrating SOTI MobiControl with third-party applications, and performing various modifications that extend SOTI MobiControl beyond its standard configuration.
Using Package Studio
This section provides information about how to use SOTI MobiControl Package Studio to create data packages for devices.
Using Script Commands
Send scripts and execute commands on your devices with SOTI MobiControl. Script commands are supported on Android Plus, Linux, macOS, Windows Desktop Classic, and Windows Mobile/CE devices.
Using SOTI MobiControl Stage
This section provides information about how to use SOTI MobiControl Stage to quickly and easily enroll devices.
SOTI Cloud Link
Glossary
Notices

Configuring Imprivata MDA as App Authenticator

This procedure describes how to use Imprivata MDA as your app authenticator.

Before you begin

Create an app policy with Imprivata MDA app configured. Enable the Manage app configuration toggle with one sign server address added.
You must have a valid directory service configured in SOTI MobiControl. These credentials verify the features each user can access on the shared device.
If a device has a Lockdown profile applied, configure Imprivata MDA as a Lockdown item. Failure to do so can result in authentication conflicts with Imprivata MDA.

About this task

To assign Imprivata MDA as app authenticator:

Procedure

Right-click on the group you want to apply shared devices to in the Groups tree then select Advanced Configurations.
Select Android Plus from the Device Type dropdown menu then Shared Device from the list of advanced configurations. The Shared Device panel appears.
In the Shared Device panel, select the Enable Shared Device toggle.
In the Single Sign-on authenticator app dropdown, choose Imprivata MDA .
Note: The following limitations apply:
1. Blacklisting Imprivata MDA with an ARC profile hides Imprivata when a user attempts to log in. The log displays Device is Pending authenticator app installation.
2. Whitelisting any application (for example, Youtube, Chrome), uninstalls/hides Imprivata and the user remains logged in on the Agent. If the user tries to log out from the Agent, they get the following error: Device is Pending authenticator app installation.
3. Logging into a locked NFC-enabled device with an access card will not work.
4. Use passcodes on devices connected to a VPN. Only Imprivata users can log in.
5. LDAP Directory Service is necessary if using Imprivata MDA as app authenticator.