SSO - Set up enableHR as a service provider on Google G Suite

This is a step by step guide for setting up enableHR as a service provider on Google G-Suite.

1. Go to Google Apps Admin, click on "Apps - Manage apps and their settings"

01_-_10_5_18__11_51.png


2. Click on "SAML Apps - Manage SSO and User Provisioning"


02_-_10_5_18__11_52.png


3. Click on "Add a service / App to your domain"


03_-_10_5_18__11_52_1.png



4. Click on "Setup my own custom App".


04_-_10_5_18__11_52_2.png


5. Download the IDP metadata (Option 1), then click continue

mceclip0.png


6. Provide the Application Name, Description and Logo.

06_-_10_5_18__11_59.png

 

7. Provide the following information:

ACS URL: https://login.enablehr.com/app/saml
Entity ID: https://login.enablehr.com/app/saml
Name ID Format: EMAIL

Name ID: Basic Information > Primary Email

(all other options in the screenshot are defaults which are fine)

mceclip1.png



8. Click "Add New Mapping".


08_-_10_5_18__12_00_1.png


9. Add the following mappings (without quotes):

"Email / User ID" -> Basic Information -> Primary Email
"First Name" -> Basic Information -> First Name
"Last Name" -> Basic Information -> Last Name

mceclip2.png

 

10. Complete the setup.

 

10_-_10_5_18__12_13.png


11. Turn on the App for users (everyone).


11_-_10_5_18__12_14_1.png


12. Confirm turning on the app.


12_-_10_5_18__12_14.png



13. Within Google apps, click on the Waffle icon, then scroll down to the bottom of the list.


13_-_10_5_18__12_15_1.png



14. enableHR shows there - click on it and you should be logged in.


14_-_10_5_18__12_15.png


Related to