Configuring Single Sign-On (SSO) for MyVCM using SAML with Google Apps
Using Security Assertion Markup Language (SAML), you can use your G Suite credentials to sign in to enterprise cloud applications via Single Sign-On (SSO).
Note: Google states that SAML apps may take up to 24 hours to propagate to all users.
- Sign in to your Google Admin console using your administrator account
- Select “SAML Apps” under “Apps”
- Select the Add a service/App to your domain or click the plus (+) icon in the bottom corner
- Click Setup my own custom SAML App
- Download the IDP metadata and save it (this will be used in later steps)
- Go back to the admin console and click Next
- In the Basic Application Information window, enter application name as “MyVCM” and enter a short description.
- Click “Choose file” next to the Upload Logo field to upload a PNG or GIF file to serve as an icon.
- Ostendio logos are available at https://www.ostendio.com
- In the Service Provider Details window, enter the following information
- ACS URL
- This is the SSO URL for SAML.
- https://<your-domain>.myvcm.net/main/resultssogateway.aspx
- Entity ID
- Same as ACS URL
- Start URL
- This will be URL of your MyVCM Instance
- https://<your-domain>.myvcm.net
- Signed Response
- Leave unchecked
- Name ID
- “Basic Information” should be set to “Primary Email”
- Name ID Format
- Select “Email”
- ACS URL
- Click Next to proceed.
- Do not make any changes on this screen and click Finish
- Click OK and close the window
- On the next screen click the setting icon and choose ON for everyone
- Back in MyVCM:
- In System Settings, select the edit icon next to Single Sign On
- Toggle Single Sign On to On
- Choose Google
- Select SAML under ‘SSO Protocol’
- Upload your Idp or certificate that you downloaded in step 5 (required)
- Click Save to complete
