Skip to content

Log in to Google Workspace using the Asgardeo

This page guides you through using Asgardeo to log in to Google.

Note

You need to have a Google domain. Further, ensure you have a Google Workspace account and your account supports SSO by referring to the Google documentation.

Create the Google Workspace Service Provider

Follow the steps given below to register the Google Workspace application in Asgardeo.

  1. On the Asgardeo Console, go to Applications.

  2. Click New Application and select Google Workspace from SSO Integrations section.

    Select app type in the WSO2 Identity Server

  3. Provide the Google domain name and a name for the application.

    Select google workspace app in the WSO2 Identity Server

  4. Click Create to complete the registration.

  5. Download the Certificate from the Guide section.


Configure Google

  1. Access your domain's admin console.

  2. Follow Google’s instructions to configure the SSO profile for your organization. During this process, use the details below:

    • Sign-in page URL: https://api.asgardeo.io/t/{organization_name}/samlsso

    • Sign-out page URL: https://api.asgardeo.io/t/{organization_name}/samlsso

    • Password URL: https://api.asgardeo.io/t/{organization_name}/t/carbon.super/myaccount/security

  3. Upload the downloaded Identity Server certificate.

    sso-fill-google.png

Try it out

Now, you have successfully configured Google and Asgardeo.

Note

The admin users of your Google domain do not get redirected to WSO2 IS. Therefore, to try out the tutorial you need to use a user who is not an admin in your Google account.

  1. Create a user in Asgardeo. Make sure that the same user exists in your Google domain.
    In this example, [email protected] is in the Google domain. Therefore, we need to create the same user in Asgardeo.

  2. Navigate to http://accounts.google.com and enter the email address of the user you created.
    You are navigated to Asgardeo's sign in screen.

  3. Enter the username and password of the user you created.
    You are navigated to the G-Suite of that domain and you can select the application you need to use.

Note

If you want to only access Gmail, navigate to mail.google.com, enter the username of the user, enter the username and password of the user on the WSO2 Identity Server sign in screen, and you are navigated to the user's mail account.