How To Set Up Your Own Google App (SAML)

Last updated 11/23/2021

Step 1

Log in to the Google Admin Console:

Step 2

  • Click on Apps.
  • On the Apps Settings page, click on SAML apps.
  • Click on Add App and then Add custom SAML app.

Step 3

  • For App Name, enter your organization's name.

Step 4

  • In the dialog that appears, complete Option 1 to download the IdP metadata, and keep this for the Bread & Butter setup below.
  • Note: The X.509 Certificate will expire in 5 years. Set a reminder for yourself to generate a new Certificate before it expires. If the Certificate expires, your users will no longer be able to log in with the provider
  • Click Continue.

Step 5

  • For ACS URL, enter the following:
  • For Entity ID, choose a unique name
  • Leave Start URL blank
  • For Name ID Format, choose EMAIL.
  • Click Continue.
Step 5

Step 6

Under Attribute Statements, add the following entries (case sensitive):
  • Add email, and choose the value Primary Email from Basic Information
  • Add first_name, and choose the value First Name from Basic Information
  • Add last_name, and choose the value Last Name from Basic Information
Click Finish.
Step 6

Step 7

  • Your app information should now be displayed. Expand the User Access section.
  • Set Service Status to ON for everyone.
  • Click Save.

Step 8

Bread & Butter Setup:

  1. Go to
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate).
  3. Navigate to Providers, then to Default Rules (or Domain Rules and open/create a domain module).
  4. Click on the Google button under Enterprise Identity Providers.
  5. Choose SAML for the protocol.
  6. Enter a name.
  7. Enter a description (optional).
  8. In the Login URL field, enter the SSO URL from the Google App
  9. In the Entity ID field, enter the Entity ID that you set in Google above.
  10. In the X.509 Certificate field, enter the X.509 certificate from the Google App
  11. Click Save & close.
  12. Enable Google by clicking the new entry in the Google Identity Providers list.
Step 8