Configuring SAML for Google Apps

REQUIRED ACCOUNT/PERMISSION LEVEL

Bitium: All account levels; must be an admin to set up

Google Apps: Google Apps for Work account; must be an admin to set up

In Bitium

  1. Go to “Manage Apps.”

  2. Select “Google Apps” from the list of installed apps.

  3. Click the “Single Sign-ON” tab.

  4. Click the dropdown and and select “SAML authentication.”

    Enabling SAML for Google Apps

    Select SAML Authentication

  5. Copy the Login URL, Logout URL and download the X.509 Certificate.

  6. Click “Save Changes” in Bitium.

In Google Apps

  1. Navigate to your Google Apps admin console (https://admin.google.com/AdminHome).

  2. Click on “Security.”

    Enabling SAML for Google Apps

    Security Settings

  3. Click “Set up single sign-on (SSO)”

    Enabling SAML for Google Apps

    Set up Single Sign-On

  4. Paste the Login URL copied from Bitium in step into the Sign-in page URL in Google Apps.

  5. Paste the Logout URL copied from Bitium in step into the Sign-out page URL and Change Password URL field in Google Apps.

  6. Upload the X.509 Certificate from Bitium in the “Verification Certificate field in Google Apps.

    Enabling SAML for Google Apps

    Add SSO details from Bitium

  7. Click “Save Changes.”

    Leave window open and continue in a new tab.

Assign a SAML App to a User

  1. Click “Manage Users.”

  2. Search and select the user.

  3. Click “Assign.”

  4. Select the “Google Apps” app and any other Google services (Google Mail, etc.) you’d like to assign access to.

  5. Click “Done.”

    Enabling SAML for Google Apps

    Assign Google Apps to User

  6. Review Actions and click “Process Users.”