Configure SAML for Google Workspace

This document explains how to configure Google Workspace for authentication and how to connect it to the Google SecOps SOAR platform.

Configure Google Workspace for SSO

1. Go to the Google Admin Portal.
2. Select Apps > Web and mobile apps.
3. In the Add App menu, select Add custom SAML app.
4. Enter a name in New Name of App, upload an app icon, and then click Continue.
5. On the Google IdP Information page, click Next.
6. On the Service Provider Details page, enter the following information, and then click Next:
• ACS URL: https://{your_siemplify_server_IP_address}/Saml2/Acs
• Entity ID: https://{your_siemplify_server_IP_address}/Saml2
7. In the Attribute Mapping screen, click Add New Mapping.
8. Set the Primary email to email.
9. Make sure that the Service Status is on.

Configure Google Workspace in Google SecOps SOAR

1. Go to Settings > Advanced > External Authentication.
2. Create a new custom SAML provider.
3. In the Provider Type menu, select G Suite.
4. In the Provider Name field, enter a name (for example, mycompany_workspace).

Complete the following fields. When you're finished, click Save:

1. Return to the Google Workspace app that you created, select Download Metadata from the menu, and save the XML file.
2. In the Google SecOps SOAR platform, click the IdP Metadata field, and then Upload to upload saved file.

1. Return to the Google Workspace app, expand Service provider details, and click Manage Certificates.
2. Under Google Identity Provider Details, locate the Entity ID and copy and paste its contents into the Google SecOps SOAR Identifier field.
3. In the Google SecOps SOAR platform, paste the contents into the Identifier field.

1. Return to the Google Workspace app, expand Service Provider details, and copy the contents of the ACS URL field.
2. In the Google SecOps SOAR platform, paste the contents into the ACS URL field, making sure to remove the trailing "/Acs" at the end.

For more information, see Authenticate users using SSO.