This session will summarize the current reality of native application authentication to native SaaS applications & present its implications on employee productivity. We will introduce the concept of a device ‘authorization agent’ installed on mobile devices and examine how this concept resolves SaaS application access challenges - enabling a SSO experience for native applications as is now possible for web applications. We will present an emerging industry-defined OpenID Connect-based model for the interactions between the enterprise, SaaS providers, authorization agent, and native apps on the employee device.