AirWatch SSO can prompt for user credentials if HMAC authentication fails
When using Single Sign-On (SSO) with AirWatch applications (or applications leveraging the AirWatch SDK), users are automatically authenticated into each application when launched. This authentication Is handled through the use of an HMAC token that is created when a device is enrolled.
In some cases, the HMAC token is not validated correctly. When this occurs, a user will now be prompted to enter their AirWatch credentials manually when launching an application using SSO with the AIrWatch SDK. After the credentials are validated, access to the app will be granted as expected.
In isolated cases, simply force closing the application and re-opening it may resolve automatic authentication issue. However, if the issue occurs repeatedly on a specific device and the user is repeatedly prompted for credentials, it is likely due to a time-sync issue on the device. Check the time settings on the device to ensure that it is appropriately syncing to a time server (the timezone specified does not matter). If the device time is manually set, it can result in the HMAC authentication to fail.