Generate an SSO callback URL

You can use the copy option to copy your current authenticator information and create the new SSO callback URL. The copy option removes the current SSO callback URL and generates a new URL when the copied authenticator is saved.

Note: Complete this task only if you configured your environment for enhanced sign in, your authenticator was created before December 2023, and you want to enable the IDP-initiated single sign-on (SSO) to the console. To verify if the authenticator was created before December 2023, in the Aurora Endpoint Defense console, open the IDP SAML authenticator (Settings > Authentication).
  • If the SSO callback URL is in the format https://login.eid.blackberry.com/_/resume/saml20/<hash>, no further action is required.
  • If the SSO callback URL is https://idp.blackberry.com/_/resume, complete these steps to generate the updated URL.
The IDP SAML authenticator was created before December 2023 and is using the deprecated SSO callback URL.
  1. In the management console, on the menu bar, click Settings > Authentication.
  2. Click the current IDP SAML authenticator.
  3. Click the Copy icon in the upper right-hand corner of the screen.
  4. Update the name of the copied authenticator, and then click Save.
  5. Open the authenticator that you copied, and then record the SSO callback URL.
  6. Delete the previous IDP authenticator.
Update the current authentication policy with the copied authenticator.