SAML Configuration for G Suite

This article details both how to configure G Suite for authentication and how to configure the Siemplify platform to support this.

To configure G Suite for SSO:

1. Navigate to the Google Admin Portal.
2. Select Apps.
   
3. Select SAML apps.
   
4. Click on Enable SSO for a SAML application.
5. In the Enable SSO for a SAML application screen, click on Setup my own Custom App.
   
6. In the Google IdP Information screen, do the following:
   • Copy the Entity ID value to a text file for future use.
   • Download the IDP metadata for future use.
   • Click Next.
     

7. In the basic information for your Custom App screen, enter your Application Name (user defined) and click Next.
   
8. In the Service Provider Details screen, enter the following information:
   • ACS URL: https://[your_siemplify_server]:443/Saml2/Acs
   • Entity ID: https://[your_siemplify_server]:443/Saml2
   • Click Next.
     
9. In the Attribute Mapping screen, click Finish.
   

*For customers using 5.11, please continue with the procedure outlined in Configure SAML Provider in Siemplify.

*The following procedure is only relevant for customers with 5.1

To configure SAML on the Siemplify server:

1. Create the following folder structure:
   C:\Siemplify_Server\ExternalIDP
2. Locate the IDP Metadata that you downloaded in the previous procedure and rename it to ExtendedEntityDescriptor.xml. Place it in the ExternalIDP folder.
3. Create a JSON file named ProviderDetails.JSON with the following entry (from release 5.1, use port 443 instead):
   

{
    "EntityId": "<EntityID from step 6a>",
    "IdentityProvider": "Gsuite",
    "LocalEntityId": " https://<your_siemplify_server>:8443/Saml2",
    "ServerAddress": " https://<your_siemplify_server>",
    "LdapConnection": ""
}

4. Restart Siemplify Service.
5. Log in using G Suite.