diff --git a/module/sso/control.php b/module/sso/control.php
index 50ecd4192a..6873a2bad4 100644
--- a/module/sso/control.php
+++ b/module/sso/control.php
@@ -127,6 +127,8 @@ class sso extends control
      */
     public function ajaxSetConfig()
     {
+        if(!common::hasPriv('admin', 'sso')) die('fail');
+
         if($_POST)
         {
             $ssoConfig = new stdclass();