Here's how to configure SAML SSO on your WeTransfer Enterprise account. Please note that SSO and SCIM is available only for users on an Enterprise plan. If you'd like to know more, don't hesitate to request a quote to our Sales team.

Create a new application for WeTransfer

1. Open Google Admin and proceed to Apps → Web and mobile apps.
2. From the menu on the top, press on Add app → Add custom SAML app.

Configure the app

Steps 1 and 2

Fill out the App details in "Step 1" and then copy the SSO URL and Certificate from "Step 2":

into the SSO configuration panel in WeTransfer:

Step 3

Next, copy Entity ID and ACS URL from the WeTransfer SSO configuration panel shown in the picture above into the corresponding fields in Google Admin. Check the "Signed response" checkbox and select "EMAIL" in the "Name ID format" field. Lastly, make sure that the "Name ID" field is set to "Basic Information > Primary email". The final configuration should look like in the image below:

Step 4

You can skip this step and press "Finish" in the bottom-right corner to save the configuration.

Assign users to the new SAML app

By default, no users are assigned to the app and no authentication through Google is required. To change this, open the configuration page of the newly created app from the "Web and mobile apps" menu and press on the "View details" button in the "User access" section:

From there, you can configure each (or all) organizational unit to use the app by setting the "Service status" to "ON for everyone".

Test the configuration

That should be enough! From now on, all non-admin members of your team will be redirected to Microsoft to log in. You can also test the configuration by clicking on the button in step 5 of the configuration on the Microsoft Azure page.

Errors, feedback?

This is a brand-new feature at WeTransfer, so we appreciate any feedback. Feel free to reach to us with any problems or suggestions for improvements. We will do our best to assist you as quickly as possible.