Configuring Microsoft Authenticator SSO (Android)

Set up Microsoft Authenticator SSO on Android devices to streamline sign-in across Microsoft Authentication Library (MSAL) apps, such as Microsoft Teams or Outlook.

Use Microsoft Entra ID to enable Single Sign-On (SSO) on Android devices managed through SOTI MobiControl. This configuration supports SSO across apps that use Microsoft Authentication Library (MSAL) without relying on the SSO for Shared Devices feature.

Prerequisites

  • Manage Profile permissions. See General Permissions.
  • Microsoft Entra ID (formerly Azure AD) Premium 1 or higher licenses with Microsoft Conditional Access enabled.
  • A supported Microsoft license plan ( See Microsoft license plans), such as:
    • Microsoft 365 E3, E5, F1, or F3

    • Enterprise Mobility + Security (EMS) E3 or E5

      See Assigning User Licenses In Microsoft Entra ID/Azure AD for instructions on assigning these licenses.
      Note: When adding a license for a user, select all services. Services may differ based on the subscription type.

Workflow