Brandfolder SAML Information
Increasing security and ease of use for all users is always top priority at Brandfolder. With SAML (Security Assertion Markup Language) we are able to easily implement a seamless authentication process for all users.
We are able to connect with any SAML 2.0 authentication provider. Below are some of the providers we have specific integrations and connectors with:
Through the Okta platform we have specific information in regards to initial set up. Click here to see the documentation.
Options for User Access:
- General Access Setting - When any user logs in through SAML they will automatically be given access to specific Brandfolders and/or Collections at a specific permission level.
- Team Access Settings - Some or all users are divided into specific teams (or departments) to allow for different privacy levels across different Brandfolders and/or Collections.
- Custom Access - An administrator of the organization is able to add a user to a specific Brandfolder and/or Collection outside of the traditional team/general access granted.
We require the nameid for the user to be an email address. Additionally, we recommend passing the user’s first name: “givenname” and last name: “surname”. This will be beneficial when tracking analytics around your assets.
Information needed for proper SAML setup:
- Set ACS URL to your organization slug/saml : https://brandfolder.com/organizations/yourslug/saml
- Set entity ID to your organization slug/saml/metada: https://brandfolder.com/organizations/yourslug/saml/metadata
- Once that is complete, please send the exported metadata file to firstname.lastname@example.org and our support team will test it.
- Once the test is successful the support team is then able to set up custom teams (if necessary) for team-wide, specific access.
Brandfolder SSO Information
SSO (Single Sign On) is another option for user authentication through Brandfolder. SSO gives clients the ability to integrate whichever user account system they have in place with Brandfolder, in order to reduce the amount of passwords and login screens users have to manage. Click here for detailed descriptions of each endpoint related to Brandfolder's SSO workflow.