Use your Google Apps as the definitive authentication source to achieve SSO semantics.

With this option, users will be authenticated against Google's OpenID server, by using one of the accounts registered in your domain.