Single Sign-On

Single sign-on is an authentication system which allows users to login to several software programs within a network with the same credentials.

BIMcollab supports Single sign-on with Azure Active Directory.

In order to configure Single sign-on for your space, you will need the following items:

1. A BIMcollab Ultimate subscription
   
2. Administrative rights in BIMcollab Nexus
   
3. An Azure Active Directory subscription
   
4. All users which connect to the space from BIMcollab Zoom or the BCF Managers, need to have the latest versions installed (at least 5.3.29 for BIMcollab Zoom, 5.6.49 for BCF Managers)
   Older versions do not yet support this way of identification

Before enabling Single sign-on, please note that only the most recent versions of BIMcollab Zoom and the BCF Managers support this way of identification. You will not be able to connect to a project on BIMcollab Nexus from older versions when Single sign-on is enabled for the space.

We recommend to wait to enable this feature until all connected applications used by your users are updated.

Configure Single sign-on as an administrator

1. Go to the Administration dashboard by clicking on the gear icon in the top right corner and select 'Administration'.
   
   
   
   
2. On the administration page, click 'Settings'
   
3. Click on 'Add configuration' in the Single sign-on section
   
   
   
   
4. Go to the Azure Portal, and add BIMcollab as an Enterprise application, as described in the Microsoft Help Center. Don't search the Microsoft Entra Gallery but 'Create your own Application'.
   
5. Assign users to the application, who need access to the BIMcollab space
6. Find the Manage section on the application integration page, and select 'Single sign-on'
   For more information on how to configure the integration in the Azure Portal, visit the Microsoft Help Center
   (In this guide, Azure AD SAML Toolkit is used as an example. Instead of filling in the Reply- and Sign-on URL mentioned in that article, use the values as described below)
7. On the 'Select a single sign-on method' page, choose 'SAML'
   
8. Click the pencil icon for Basic SAML Configuration to edit the settings
   
   
   
   
9. In BIMcollab Nexus, copy the Identifier, Reply URL and Sign-on URL from the configuration window
   
   
   
   
10. Paste the values in the corresponding fields in the Azure Single sign-on setup wizard
    
11. In step 3 of the Azure setup wizard, download the Certificate (Base64), and save it on your computer
    
    
    
    
    
    
12. In step 4 of the Azure setup wizard, copy the Login URL
    
    
    
    
    
    
    
13. Paste the Login URL in the BIMcollab configuration window
    
14. Open the certificate you downloaded, and paste the text in the BIMcollab configuration window. In some browsers it is also possible to drag the certificate directly into the configuration window.
    
    
    
    
15. Click 'Test' to validate if the login is working. A new tab will be opened in the browser in which you can login using an Active Directory account
    
16. A successful login will take you back to the BIMcollab page where you are notified that the test connection is successful
    
17. Click 'Enable' to enable Single sign-on for all users in the BIMcollab space
    
    
    

Once the Single sign-on has been enabled, all users will have to login to the space using their Active Directory account. Make sure all users which are part of your space, are also part of your Active Directory, and have the rights to login to BIMcollab. Users who are not part of your company can be added to your Azure account as guest users.

Login to BIMcollab with Single sign-on as a user

When Single sign-on is enabled for the space you are part of, you will be asked to login using your Active Directory credentials in these cases:

1. When logging in to the space in the browser
   
2. When connecting to a project in the space from BIMcollab Zoom
   
3. When connecting to a project in the space from a BCF Manager

Only the most recent versions of BIMcollab Zoom and the BCF Managers support this way of identification (at least 5.3.29 for BIMcollab Zoom, 5.6.49 for BCF Managers). You will not be able to connect to a project on BIMcollab Nexus from older versions when Single sign-on is enabled for the space.

• Related Articles

• Manage a BIMcollab Nexus

  Administrators can reach the administration page by clicking on the gear icon in the top right corner and choosing Administration. If you do not see the gear icon, you do not have administrative rights in the space. The administration page is easily ...

• Space settings

  In a private BIMcollab Nexus space, you can define several space settings as an administrator. To edit these settings follow these steps: Go to the Administration dashboard by clicking on the gear icon in the top right corner If you do not see the ...

• Issue management tab on BIMcollab Nexus

  The issue management tab in BIMcollab Nexus serves as a centralized hub for effectively handling challenges encountered during Building Information Modeling (BIM) projects. This section allows users to have an overview of discrepancies and ...

• Features of BIMcollab Nexus plans

  BIMcollab Nexus streamlines model-based collaboration by centralizing BIM requirements, model coordination, issue management, information takeoffs, and progress tracking—all in the cloud. You can choose from three subscription plans: Essential, ...

• On-premise policy BIMcollab

  Currently we support three ways to deliver our SAAS software: Multi-tenant in the cloud: multiple clients share resources in the cloud in our datacenters to use our services. This is the most widely used solution, and our current and future standard ...