Google Apps/ G Suite as IDP

Step 1: Setup Google Apps/G Suite as Identity Provider

Follow the following steps to set up Google Apps / G Suite as an Identity Provider


Single Sign On using GoogleApps, GoogleApps SSO Login-6  Login as Administrator

  • Go to https://admin.google.com and login with your G Suite administrator account.
  • Go to Apps from the left menu and click SAML Apps.

    SAML Single Sign On (SSO) using GoogleApps Identity Provider, SAML Apps
Single Sign On using GoogleApps, GoogleApps SSO Login-6  Add a SAML app

  • Click on the “+” button at the bottom right corner to create a new SAML app.
  • Select button SETUP MY OWN CUSTOM APP

    SAML Single Sign On (SSO) using GoogleApps Identity Provider, Setup Custom App to Enable SSO
Single Sign On using GoogleApps, GoogleApps SSO Login-8  IDP Information

  • Copy G Suite details from Option 1 of Step 2 and download the Certificate to configure the add-on manually.
  • OR You can also download the IDP metadata from Option 2 of Step 2, and then click Next.
  • Fill up the Basic Information for custom App such as Application Name( Eg. SAML App) and Description as per your choice.
  • Click Next.

    SAML Single Sign On (SSO) using GoogleApps Identity Provider, Fill Basic Information for Custom App
Single Sign On using GoogleApps, GoogleApps SSO Login-10  Service Provider Details

    SAML Single Sign On (SSO) using GoogleApps, Fill Service Provider Details
  • Enter details from the SP Info tab in the add-on as given below.

  • Information to be entered in G Suite Information to copy from the add-on in SP Info tab
    ACS URL ACS URL
    Entity ID SP Entity ID/ Issuer
    Signed Response
    Name ID Format EMAIL
  • Click Next.
Single Sign On into GoogleApps, GoogleApps SSO Login-1  Attribute Mapping

  • Click on Add New Mapping
  • Add mapping for first name and last name
  • Click on Finish

    SAML Single Sign On (SSO) using GoogleApps Identity Provider, Attribute Mapping
Single Sign On using GoogleApps, GoogleApps SSO Login-3  Turn on

  • By Default SAML Apps are turned off for everyone.
  • Select Edit Service option.
  • SAML Single Sign On (SSO) using GoogleApps Identity Provider, Edit Service
  • Change the setting to select ON for everyone to activate SSO.
  • Note: All the users will be asked to SSO to access G Suite Apps and they will not be able to login normally using a username and password.


  • SAML Single Sign On (SSO) using GoogleApps Identity Provider, Assign App to Everyone