Configure G Suite for Custom SAML App

To configure devices using G Suite credentials with SSO, follow the steps below:

1. Login to https://admin.google.com  with G Suite credentials.

2. Under Home, click Apps.

3. Click Web and Mobile Apps.

4. Select Add App and click Add Custom SAML App from the drop-down list.

5. On the Add Custom SAML App page, enter the App details and click Continue. 

6. On the following screen, on the Google IDP details, proceed by clicking 'Continue' without making any changes.

7. In the next 'Service Provider Details' screen, configure Single Sign-on, input Service Provider details, including ACS URL and entity ID, and then click Continue.

note

An example of an ACS URL and Entity ID given below:

• Add your SureMDM DNS name and Account ID as:

https://<DNS Name>/console/sharedsaml?id=<account id>

For example: https://suremdm.42gears.com/sharedsaml?id=xxxx

• Entity Id as: urn:42gears:suremdm:SAML2ServiceProvider

8. In the 'Attribute Mapping' page, click Add Mapping and provide the following details:

• Employee Details: Select a parameter from the 'Google directory attributes' list.
• App Attributes:  User defined meta tag and then click Finish.

note

App Attributes will be your meta tag value.

9. Go to the Web and Mobile Apps screen and click on the created SAML App.

10. In the App Details screen, the 'User Access' option is initially set to 'OFF for everyone' by default. Change it to 'On for everyone' and click Save.

11. Click DOWNLOAD METADATA in App details.

12. Copy SSO URL, Entity ID. Click Download to download the certificate and then click Close.

note

SSO URL, Entity ID, and Certificate details are required while configuring SSO in SureMDM.