Below indicates the steps to setup SAML for Google.
Login to your Google Admin Account and click on "Apps." Then click on "Web and mobile apps."
In the "Web and Mobile Apps" page, click the "Add App" dropdown and then "Add Custom SAML App."
A new page will load and in here you can enter your desired "App Name" and "Description." Then click "Continue."
In the next page, you will see SSO URL, Entity ID, and Certificate. (Do not share the URL or Certificates to unauthorized users, as it contains sensitive information)
In a separate tab, login to QBench, click your username dropdown, then Settings. The page will reload and then click on the "SSO" tab. Next click on "Enable SAML Login."
Once enabled, copy the "SSO URL" from Google and paste the link it into QBench's "SSO URL." Next, copy "Entity ID" from Google and paste the text into QBench's "Identity Provider Issuer URL." Finally, copy the "Certificate" from Google and paste the whole text into QBench's "X.509 Certificate" Section, and click "Save" in QBench.
In Google's SAML App, click continue and the "Service provider details" will appear.
In the "ACS URL" Section, enter your QBench domain name, followed by /login/sso/saml
- An example would be: https://example.qbench.net/login/sso/saml
In the "Entity ID" Section, enter your QBench domain name, followed by /metadata
- An example would be: https://example.qbench.net/metadata
On the same page, in the "Name ID" Section:
- Select "Email" for the Name ID Format, then select "Basic Information > Primary Email" and click continue.
In the Attributes Page, click on "Add Mapping."
Then select "Primary Email."
In "App attributes," type in user.email and then click "Finish."
Next you will need to turn on User Access. Click on "Off for everyone" that is circled in red.
Then click on "On for everyone" and hit "Save."
Congratulations, you have now successfully setup your SAML Login.
Please sign in to leave a comment.