Single Sign-On Setup: Google

This is a guide that will help you setup Single Sign-On on CloudCheckr with your G Suite credentials.

These are the steps you will have to follow:

[1] Setup your own SAML app

  1. In your Google Admin console (at admin.google.com).
  2. Click Apps > SAML apps.
  3. Select the Add a service/App to your domain link or click the plus (+) icon in the bottom corner.
  4. Click Setup my own custom SAML App.
  5. The Google IDP Information window opens and the Single Sign-On URL and the Entity ID URL fields automatically populate.
  6. Download the IDP metadata, send the downloaded XML file to Support. Click Next.
  7. In the Basic Application Information window, add an application name and description.
  8. In the Service Provider Details window, add an ACS URL, an Entity ID, and a start URL.
  9. Click Next.
  10. No mappings are required.
  11. Click Finish.

[2] Turn on SSO to your new SAML App

  1. In your Google Admin console (at admin.google.com)…
  2. Go to Apps > SAML apps.
  3. Select your new SAML app.
  4. At the top of the gray box, click More Settings and choose:
    • On for everyone to turn on the service for all users (click again to confirm).
    • Off to turn off the service for all users (click again to confirm).
    • On for some organizations to change the setting only for some users.
  5. Ensure that your user account email IDs match those in your G Suite domain.

[3] Notify CloudCheckr

1. Email the downloaded SAML metadata file to CloudCheckr Support.
2. CloudCheckr needs up to 30 minutes to prepare your account after support configured it.

[4] Access to CloudCheckr

  1. Logon to your Google account.
  2. Click on the applications grid on the top.
  3. Click More if CloudCheckr access is not seen.
  4. Click the app icon to access CloudCheckr.