Overview
Fieldwire offers Single Sign On (SSO) as an available feature for customer invoiced plans. With SSO, you will only need to use one set of credentials across your applications for improved IT security and control.
SSO and Fieldwire
Fieldwire Supports any SAML 2.0 Compliant Identity Provider (IdP), such as Google, Microsoft, Okta, and OneLogin.
SSO can only be enabled at the email domain level, as opposed to the account level. Nevertheless, it is possible to provide SSO access for several email domains (eg. @companyA.net and @companyB.net).
Example: SSO is enabled for the company domain (@xyz.com). When a user with that domain (ex: john@xyz.com) attempts to log into Fieldwire, the user will be redirected to the company's IdP to log in. Any subcontractors, or other users who do not have the email domain, would need to log into Fieldwire through the regular login flow.
Setting up SSO will require a call with our Engineering Team, and the company IT team. Contact sales@fieldwire.com to learn more about implementing SSO.
Troubleshooting
When utilizing SSO, there are certain errors you might encounter depending on your configuration.
One error you might encounter can be seen in the screenshot below:
If you see an error message like this, it means that your IdP (Identity Provider) is stating that you need to grant the indicated user (email address) access to the Fieldwire SSO application in your instance of Microsoft Azure.
This is not an exhaustive list of errors you may encounter. If you encounter an SSO-related error that isn't included here and pertains to Fieldwire, please contact support@fieldwire.com and our support team will investigate it further alongside our engineers.
More information
In order to use SSO, apps should be on a minimum of iOS 1.9, and Android 3.7808.
Users will not be able to log into Fieldwire through SSO if running an older version.