|
| 1 | +--- |
| 2 | +title: Enable single sign-on for dev boxes |
| 3 | +titleSuffix: Microsoft Dev Box |
| 4 | +description: Learn how to enable single sign-on for dev boxes Edit an existing pool to configure single sign-on for new dev boxes. |
| 5 | +services: dev-box |
| 6 | +ms.service: dev-box |
| 7 | +author: RoseHJM |
| 8 | +ms.author: rosemalcolm |
| 9 | +ms.date: 04/24/2024 |
| 10 | +ms.topic: how-to |
| 11 | + |
| 12 | +#customer intent: As a platform engineer, I want to enable single sign-on for dev boxes, so that my dev box users have a smoother sign-on experience. |
| 13 | +--- |
| 14 | + |
| 15 | +# Enable single sign-on for dev boxes |
| 16 | + |
| 17 | +In this article, you learn how to enable single sign-on (SSO) for dev boxes in Microsoft Dev Box pools. |
| 18 | + |
| 19 | +SSO allows the connection to skip the credential prompt and automatically sign the user in to Windows through Microsoft Entra authentication. Microsoft Entra authentication provides other benefits including passwordless authentication and support for third-party identity providers. To get started, review the steps to configure single sign-on. |
| 20 | + |
| 21 | +## Prerequisites |
| 22 | + |
| 23 | +To enable SSO for dev boxes, you must configure single sign-on for your organization. For more information, see: [Configure single sign-on for Windows 365 using Microsoft Entra authentication](/windows-365/enterprise/configure-single-sign-on). |
| 24 | + |
| 25 | +## Enable SSO for dev boxes |
| 26 | + |
| 27 | +Single sign-on is enabled at the pool level. When you enable SSO for a pool, all new dev boxes created from that pool use SSO. Existing dev boxes continue to use the existing sign-on method. You can only enable single sign-on for dev boxes in an existing pool. You can't enable SSO for dev boxes as you create a pool. |
| 28 | + |
| 29 | +To enable SSO for dev boxes in a pool, follow these steps: |
| 30 | + |
| 31 | +1. Sign in to the [Azure portal](https://portal.azure.com). |
| 32 | +1. In the search box, enter *projects*. |
| 33 | +1. In the list of results, select **Projects**. |
| 34 | +1. Select the project that contains the pool you want to enable SSO for. |
| 35 | +1. In the left menu, under **Manage**, select **Dev box pools**. |
| 36 | +1. Select the pool that you want to enable SSO for. |
| 37 | +1. On the line for the pool, at the right end, select **...** and then select **Edit**. |
| 38 | + |
| 39 | + :::image type="content" source="media/how-to-enable-single-sign-on/azure-portal-pool-edit.png" alt-text="Screenshot of the Azure portal showing the list of pools in a project with the menu and edit option highlighted."::: |
| 40 | + |
| 41 | +1. On the **Edit pool** page, under **Management**, select **Enable single sign-on**, and then select **Save**. |
| 42 | + |
| 43 | + :::image type="content" source="./media/how-to-enable-single-sign-on/edit-pool-single-sign-on.png" alt-text="Screenshot that shows the Edit pool page in Microsoft Dev Box."::: |
| 44 | + |
| 45 | +When single sign-on is enabled for a pool, new dev boxes created from that pool use SSO. Existing dev boxes continue to use the existing sign-on method. |
| 46 | + |
| 47 | +## Disable SSO for dev boxes |
| 48 | + |
| 49 | +You can disable SSO for a pool at any time by deselecting the **Enable single sign-on** option on the **Edit pool** page. |
| 50 | + |
| 51 | +If you disable single sign-on for a pool, new dev boxes created from that pool prompt the user for credentials. Existing dev boxes continue to use SSO. |
| 52 | + |
| 53 | +## Related content |
| 54 | + |
| 55 | +- [Configure single sign-on for Windows 365 using Microsoft Entra authentication](/windows-365/enterprise/configure-single-sign-on) |
0 commit comments