Manually managing dozens of users across tools and platforms is a hell of a job. This is when single sign-on (SSO) steps in by centralizing access management.
Single sign-on via Google and Microsoft accounts with the ability to enable and disable authentication methods is available to all customers.
In addition to that, our Company plan includes SAML SSO — making it possible to connect Fibery to Okta, Azure, OneLogin, or a custom identity provider (IDP).
Workspace Settingsin the top left menu.
SAML SSOauthentication method.
Paste the URL and the certificate provided by the IDP (ex. Okta).
(optional) Enable just-in-time provisioning to create Users in Fibery automatically on sign-in instead of inviting them manually in advance.
Feel free to disable all the alternative authentication methods for extra security.
Once you enable and configure SAML SSO, a new button appears on your Workspace login page:
Once a user clicks this button, they are redirected to the IDP login before continuing to their Workspace.
The global login page doesn't know anything about the IDP of your particular Workspace, so please navigate directly to your.fibery.io to sign in with SSO.
Step 1. Create a new Okta app:
Create New App.
Webas platform and
SAML 2.0as sign on method.
Step 2. Make it a Fibery app.
Name the App
Fibery (Workspace Name)if your organization has multiple Workspaces.
Upload the logo.
Step 3. Configure SAML basics.
Single sign on URLand
Name ID format
Leave the last option as
Create and update
Step 4. Configure optional SAML attributes to set Users' names (not just emails) via JIT provisioning.
Go to the next step.
Step 5. Provide feedback (if you'd like to) and finish Okta app creation.
I'm an Okta customer adding an internal app.
(optional) Provide feedback to Okta and finish the setup.
Step 6. Grab the URL and the certificate and paste into Fibery.
View Setup Instructions for SAML 2.0.
Copy first the URL (1) and then the certificate (3).
Paste them into Fibery SAML SSO configuration.
Configuring another identity provider
If you use another IDP and their guide is of no help, please reach us via Intercom — we'll make it work together. Once we do, a new section will appear in this guide :)