Since SAML (what Google uses for SSO) needs a browser in order function properly, alternative clients such as mobile devices can’t leverage SAML SSO. Therefore, traditional authentication mechanisms (e.g. user idpassword) are required. This becomes a challenge when SSO is enabled within Google because password management by the user within the web UI is disabled.
To allow access for alternative clients, a password needs to be created in Google Apps.
SSO Easy has two options available through its EasyConnect Single Sign On solution for doing this:
1) Allow the user to set a password in Google
2) Synchronize AD passwords with Google