Ensuring identity features are properly configured

Question 1

Setting up SSO

Answer 1

Create a SAML SSO profile

Sign in to your Google Admin console.

Sign in using an administrator account, 
 In the Admin console, go to Menu ""and then"" Securityand thenOverview.
Under Third-party SSO profiles, click Add SAML profile.
Enter a name for the profile.
Fill in the Sign-in page URL and other information obtained from your IdP.
(Optional) Enter a change password URL for your IdP. Users will go to this URL (rather than the Google change password page) to reset their passwords.
Click Upload certificate, then locate and upload your certificate file. For information on generating a certificate, see SAML key and verification certificate.
Click Save.
In the SP Details section, copy and save the Entity ID and ACS URL. You’ll need these values to configure SSO with Google in your IdP admin control panel.

Question 2

Configuring Google account

Answer 2

1. Log in
2. Select Users
3. select add new user
4. Enter in user information
5. Optional - Select OU
6. Optional - Provide secondary email
7. Either enter password or generate one
8. Force PW change on log in.

OR

Bulk upload via CSV.

Question 3

Utilizing 3rd party identity providers

Answer 3

With single sign-on (SSO), your users can access many applications without having to enter their username and password for each application. Here’s how to set up SSO if you use a third-party Identity provider (such as Microsoft Azure AD or Okta) to authenticate your users.