Single Sign-On

Single sign-on is an authentication system which allows users to login to several softwares within a network with the same credentials.

BIMcollab supports Single sign-on with Azure Active Directory.

In order to configure Single sign-on for your space, you will need the following items:

1. A BIMcollab Enterprise subscription
   
2. Administrative rights in BIMcollab Cloud
   
3. An Azure Active Directory subscription
   
4. All users which connect to the space from BIMcollab ZOOM or the BCF Managers, need to have the latest versions installed (at least 5.3.29 for BIMcollab ZOOM, 5.6.49 for BCF Managers)
   Older versions do not yet support this way of identification

Before enabling Single sign-on, please note that only the most recent versions of BIMcollab ZOOM and the BCF Managers support this way of identification. You will not be able to connect to a project on BIMcollab Cloud from older versions when Single sign-on is enabled for the space.

We recommend to wait to enable this feature until all connected applications used by your users are updated. 

Configure Single sign-on as an administrator

1. Go to the Administration dashboard by clicking on the gear icon in the top right corner
   
   
   
   
2. On the Subscription tab, click 'Space settings'
   
3. Click on 'Add configuration' in the Single sign-on section
   
   
   
   
4. Go to the Azure Portal, and add BIMcollab as an Enterprise application, as described in the Microsoft Helpcenter
   
5. Assign users to the application, who need access to the BIMcollab space
6. Find the Manage section on the application integration page, and select 'Single sign-on'
   For more information on how to configure the integration in the Azure Portal, visit the Microsoft Helpcenter
   (In this guide, Azure AD SAML Toolkit is used as an example. Instead of filling in the Reply- and Sign-on URL mentioned in that article, use the values as described below)
7. On the 'Select a single sign-on method' page, choose 'SAML'
   
8. Click the pencil icon for Basic SAML Configuration to edit the settings
   
   
   
   
9. In BIMcollab Cloud, copy the Identifier, Reply URL and Sign-on URL from the configuration window
   
   
   
   
10. Paste the values in the corresponding fields in the Azure Single sign-on setup wizard
    
11. In step 3 of the Azure setup wizard, download the Certificate (Base64), and save it on your computer
    
    
    
    
    
    
12. In step 4 of the Azure setup wizard, copy the Login URL
    
    
    
    
    
    
    
13. Paste the Login URL in the BIMcollab configuration window
    
14. Open the certificate you downloaded, and paste the text in the BIMcollab configuration window. In some browsers it is also possible to drag the certificate directly into the configuration window.
    
    
    
    
15. Click 'Test' to validate if the login is working. A new tab will be opened in the browser in which you can login using an Active Directory account
    
16. A successful login will take you back to the BIMcollab page where you are notified that the test connection is successful
    
17. Click 'Enable' to enable Single sign-on for all users in the BIMcollab space
    
    
    

Once the Single sign-on has been enabled, all users will have to login to the space using their Active Directory account. Make sure all users which are part of your space, are also part of your Active Directory, and have the rights to login to BIMcollab. Users who are not part of your company can be added to your Azure account as guest users.

Login to BIMcollab with Single sign-on as a user

When Single sign-on is enabled for the space you are part of, you will be asked to login using your Active Directory credentials in these cases:

1. When logging in to the space in the browser
   
2. When connecting to a project in the space from BIMcollab ZOOM
   
3. When connecting to a project in the space from a BCF Manager

Only the most recent versions of BIMcollab ZOOM and the BCF Managers support this way of identification (at least 5.3.29 for BIMcollab ZOOM, 5.6.49 for BCF Managers). You will not be able to connect to a project on BIMcollab Cloud from older versions when Single sign-on is enabled for the space.

• Related Articles

• Space settings

  In a private BIMcollab Cloud space, you can define several space settings as an administrator. To edit these settings follow these steps: Go to the Administration dashboard by clicking on the gear icon in the top right corner If you do not see the ...

• Create a new project

  To create a new project, click on the button 'New project' in the upper right corner of the 'My Projects' page. If you cannot see the 'New project' button, you do not have rights to create projects in the space. Contact the space administrator to ...

• Import users into BIMcollab Cloud from a CSV file

  In some cases you may wish to import a list of users from another source into BIMcollab Cloud. In that case the easiest way is to save your user data into a CSV file. Creating a CSV file can be done using a spreadsheet application such as Microsoft ...

• Using your free project on join.bimcollab.com

  Introduction BIMcollab Join (join.bimcollab.com) is the free version of BIMcollab Cloud, which permits you to test our solution.  A lot of features which are available in a personal space, can also be tested in Join, but the number of active projects ...

• Delete an issue

  Sometimes it may be necessary to delete issues from a project in BIMcollab Cloud. This could be due to them being created by mistake or being duplicates. This article describes how the space administrator can assign users the right to delete issues ...