Turn on and test federated authentication in Apple Business Manager
After you’ve completed a successful administrator account sign-in and the user name conflict check is complete, you can turn on and test federated authentication.
Turn on federated authentication
In Apple Business Manager , sign in with an account that has the role of Administrator, Site Manager, or People Manager.
Click Settings at the bottom of the sidebar, then click Accounts below Organization Settings.
Click Edit in the Federated Authentication section, then turn on federated authentication for the domains that have been successfully added to Apple Business Manager.
It may take a while to update all accounts.
Test federated authentication
You can test the federated authentication connection after you’ve performed the following tasks:
You’ve completed a successful connection to your domain.
The user name conflict check is complete.
The Managed Apple ID default format is updated.
Note: Accounts with roles of Administrator, Site Manager, and People Manager can’t sign in using federated authentication; they can only manage the federation process.
In Apple Business Manager , sign in with an account that doesn’t have a Staff role.
If the user name is found, you’ll see a new screen indicating you are signing in with an account in your domain.
Click Continue, enter the password for the user, then click Sign In.
Sign out of Apple Business Manager.