Does your login system speak SAML 2.0? Then Files.com signs people in with it and syncs accounts with SCIM. That covers Ping Identity, Cloudflare SSO, IBM Security Verify, Rippling, Google Workspace SSO, and anything else. You don't need a named integration for your provider.
SAML is the open standard that lets your login system tell an app who someone is. The Files.com general-purpose SAML setup catches any provider Files.com doesn't build a named integration for. Your people log in with the account they already have, and accounts are created and removed straight from your directory. So the directory you already run stays the one source of who gets in, and there's no second login to manage on the side.
Ping Identity, Cloudflare SSO, IBM Security Verify, Rippling, Google Workspace SSO, and any other SAML 2.0 provider all sign people in through one general-purpose SAML setup. So you don't wait for a named integration to ship, and you don't get stuck if your provider is one Files.com never builds one for.
Turn on account sync (SCIM) and access follows your directory. Someone gets Files.com access the moment they appear in it. The moment you turn them off, the next sync removes their access across the web, SFTP, and the Desktop App at once. So a person who left can't keep a way in you forgot to close, and you never grant or revoke file access by hand.
A seat starts counting only once that person signs in for the first time. So you can sync your whole directory into Files.com and not pay for the people who never log in, and your bill tracks real usage instead of headcount.
Keep your second-factor check (MFA) in your own login system. For accounts it does not manage, add Files.com’s own second factor (2FA). It covers SFTP, FTP, and WebDAV too, not just the browser. So a stolen password alone never opens your files, on any way in.
SAML lets you set up the same provider more than once on a single site. Give each team or business unit its own setup, so one tenant can serve several units while each unit's sign-in and access stay separate. OAuth-based providers are limited to one each.
Your login system decides who is allowed in. Files.com decides what each person can reach once they are in. That means nine levels of access, set per person or per group, folder by folder, with the ability to block access and to fence in junior admins. Every sign-in, account sync, and permission change is written to the Files.com audit log.
If your login system supports it, Files.com creates accounts, keeps them current, and turns them off automatically. This is SCIM. You get the same automatic sync the named integrations get, without waiting for a named one of your own. So onboarding and offboarding happen in your directory and nowhere else, with no second list to keep up by hand.
Files.com keeps a separate, detailed log of every account it creates, changes, or turns off. When a sync does not land the way you expect, you can see exactly what your login system sent. So you fix the problem at the source in minutes instead of guessing, and you have a record to show the auditor.
Map your SAML groups straight to folders and admin levels. Nine levels of access, set per person or per group, keep access defined where your security team already manages it. So who can reach what stays in step with your directory, and least-privilege holds without a second list to maintain.
Files.com's second-factor check (2FA) reaches SFTP, FTP, and WebDAV, not just the browser. So accounts your login system does not manage still get a second check on every way in.
The way in for any SAML 2.0 provider that doesn't have its own named integration. In Files.com you pick SAML (Other Provider) and point it at your provider with a Metadata URL, an XML file, or a certificate fingerprint. People then sign in with their existing account, so there's no new password to issue and nothing extra for them to remember.
Turn this on when your login system supports it, for automatic create, update, remove, and group sync. It runs over the SAML setup, so accounts and groups stay in step with your directory and there's nothing to keep current by hand.
Nothing extra to set up. This is what happens when account sync (SCIM) is off. Accounts are created the first time someone signs in. Good for getting started fast before you need full automation.
A company running Ping Identity, Cloudflare SSO, IBM Security Verify, or Rippling sets up the general-purpose SAML connection. People then sign in to Files.com with their existing account. No named integration needed, so you're not blocked waiting for one to be built.
A login system that supports account sync (SCIM) creates Files.com accounts on its own, with the right groups and folders applied the moment each account is made. So a new hire can reach exactly the right files on day one, with no setup ticket waiting in your queue.
Turn off someone in your SAML login system. With account sync (SCIM) on, the next sync turns off their Files.com account too. Web, SFTP, and Desktop App, all at once. So the person you offboarded loses every way in, and you never chase a leftover account a week later.
Set up the same provider twice, one per business unit. Each gets its own name on the Files.com login page. Each unit's access stays separate, so one site can serve several teams without their files or sign-ins crossing over.
The folder permissions your SAML groups map into. Nine levels of access per folder, with the ability to block access and to fence in junior admins.
Learn MoreEvery SAML sign-in and account sync is written to a tamper-proof record you can export, so the answer to who reached what is already there when the auditor asks.
Learn MoreFolder permissions and the second-factor check reach SFTP, FTP, and WebDAV, not just the browser a SAML user signs into.
Learn MoreRules that decide how long files stick around once a SAML user has put them in Files.com.
Learn MoreCommon questions about how Files.com connects to SAML and what the integration does.
Start a free 7-day trial. Connect your SAML 2.0 login system to Files.com, run a test sign-in, and watch sign-in and account sync work against your own directory. No credit card required.
No credit card required • 7-day free trial • Setup in minutes