Skip to main content

Google Workspace (formerly G Suite) SSO

SureMDM offers seamless integration with Google Workspace (formerly G Suite) Single Sign-On (SSO), streamlining user access and enhancing security within your organization's device management ecosystem. With Google Workspace (formerly G Suite) SSO integration, users can access SureMDM using their existing Google Workspace (formerly G Suite) credentials. This eliminates the need for separate login information and simplifies the user experience.

Configure Settings in Google Admin Console

To configure SureMDM Single Sign-On with Google Workspace (formerly G Suite), follow these steps:

1. Log in to https://admin.google.com with Google Workspace (formerly G Suite) credentials.

2. Click Apps.

3. Click SAML apps.

4. Click Add.

5. Click Setup My Own Custom App.

6. On the Google IdP Information prompt, copy SSO URL, Entity ID and Certificate and click Next. Click Download to download the certificate.

note

SSO URL, Entity ID, and Certificate details are required while configuring SSO in 42Gears UEM.

7. Enter the Application Name, select the logo file in Upload Logo and click Next

8. Enter the ACS URL and Entity ID and click Next.

Example for ACS URL : https://(SureMDM Hub Server Path)/adminconsole/ssoconsumer/Hub ID

note

Admin should enter their SureMDM Server Path and Hub ID into the above-mentioned URL. 

9. Click Finish.

10. Click OK.

11. Click Edit Service.

12. Select ON for everyone and click Save.

Configure Settings in SureMDM Hub (Google Workspace (formerly G Suite))

To configure SSO with G Suite, follow these steps:

1. Login to the SureMDM Hub as a Superuser.

2. Navigate to SureMDM Hub > Account Management > Single Sign On.

3. Configure Single Sign-On settings for G Suite.

  • Enable Single Sign-On: Select this option to allow configuring Single Sign-On settings.
  • Service Identifier: Enter the Service Identifier Url that has copied from step no.6, configure settings in Google Admin Console.
  • Sign On Service Url: Enter the URL for Sign On service Url that has been copied from step no.6, and configure settings in Google Admin Console.
  • Logout Service Url: Enter the URL for logout.
    note

    Generally, the URLs for the Sign On Service Url and Logout Service Url will be the same.

  • Roles: Choose an option for the Roles from the drop-down menu. To know more, see Create Roles for the Admin User.

4. Click Generate Certificate to generate a self-signed certificate on the server and make it ready for download.

or

Click Upload Certificate to upload another certificate. 

These options are available when no certificate is uploaded.

5. Once configured, click Save.