Google Apps (SAML 2.0)
  • 14 Feb 2023
  • 1 Minute to read
  • Contributors

Google Apps (SAML 2.0)


This article describes the two ways to set Google Suite as your identity provider: using Google Service or using Google SAML applications

  • Configuring Google Suite as your IdP using SAML
  • Configuring Perimeter 81

When choosing one over the other please keep in mind:

  • While (at the moment) a SAML integration does not lead to any additional costs on Google's side, applying this configuration using Google Services may increase your Google Suite pricing, depending on your Google customer tier.
  • A SAML integration enables you to force all users to authenticate using Google Suite, as opposed to setting up a Google Service which is more flexible and can be applied to particular groups of users only.


Configuring Google Suite as your IdP using SAML

Configuring the app at the G suite management console

  1. Open the G Suite management console.

  2. Select Apps.
    360009883339image7.png

  3.  Select Add custom SAML app.

  4. Enter the desired name, description, and logo.
    360009883840image8.png

    The app logo is optional and can be found using this link

  5.  Copy the SSO URL and download or copy the certificate, then select next.

  6. Fill in the following information:

  • ACS URL : https://auth.perimeter81.com/login/callback?connection={{WORKSPACE}}-oc
  • Entity ID : urn:auth0:perimeter81:{{WORKSPACE}}-oc
  • Make sure to replace {{WORKSPACE}} with your workspace name (for example, if you log in to the platform using myworkspace.perimeter81.com, replace {{WORKSPACE}} with myworkspace )
  • Name ID: Basic Information > Primary Email
  • Name ID Format: UNSPECIFIED

7. 

Click on the "add mapping" button to create 4 different rows and then fill in the following attributes:

(every attribute will have its own row) 

1. Basic Information -> Primary email: email 

2. Basic Information -> Last Name: family_name

3. Basic Information -> First Name: given_name

4. Employee Details -> Department: groups 


8.

Once the application has been created select Status, and then turn it on for everyone.
360009883820image5.png

Configuring Perimeter 81

You need to configure the integration from the Perimeter 81 side.

  1. Log in to your Perimeter 81 Management Platform, navigate to Settings and then IdentityProviders.
    360008600320addprovider1.png
  2. Select + Add Provider.
  3. Select SAML 2.0 Identity Providers.
  4. Fill in SSO URL.
  5. Add your organization domain.
  6. Upload the certificate
    360007806800okta-addonp81.png
  7. Select Done.

Was this article helpful?